Closed caitlinbetz closed 1 month ago
@caitlinbetz Thanks for opening the ticket! I'll need a bit more time than June 24 to deliver serverless docs; we generally shoot for 2-week turnaround and I'm on PTO the rest of this week. But I can tackle this as soon as I get back and give you an updated ETA
Hi! I noticed the Crowdstrike connector showing up in my screenshots but it's not in the API docs or the Kibana docs yet. If it's ready to be documented, typically the dev owners create the first draft of the latter by using the layout in https://github.com/elastic/kibana/blob/main/docs/action-type-template.asciidoc. I'm happy to help add details to the API document (currently manually maintained in https://github.com/elastic/kibana/tree/main/x-pack/plugins/actions/docs/openapi/components/schemas) too
@lcawl I actually just asked the dev team about this over on another docs issue, so I referenced your comment too. Thanks for checking up on this!
FYI I've created https://github.com/elastic/kibana/pull/192526 to add this connector to the API docs
Description
We are releasing our bidirectional capability with Crowdstrike, which will allow users to execute host isolation / release of a crowdstrike agent through elastic security. Functionalities include:
This is similar to the functionality (and docs) we previously added for Sentinel One: https://www.elastic.co/guide/en/security/current/response-actions-config.html (see also, S1 docs ticket: https://github.com/elastic/security-docs/issues/4312)
Background & resources
Internal docs issue (additional context and discussion): https://github.com/elastic/security-docs-internal/issues/21
PRs: https://github.com/elastic/kibana/pull/180197
Additional PRs
- https://github.com/elastic/kibana/pull/174590 - https://github.com/elastic/kibana/pull/180175 - https://github.com/elastic/kibana/pull/180197 - https://github.com/elastic/kibana/pull/180200 - https://github.com/elastic/kibana/pull/184217 - https://github.com/elastic/kibana/pull/184302 - https://github.com/elastic/kibana/pull/186469 - https://github.com/elastic/kibana/pull/186522Issues/metas: EPIC: https://github.com/elastic/security-team/issues/6200, https://github.com/elastic/security-team/issues/8907, https://github.com/elastic/security-team/issues/9587
Additional issues
- https://github.com/elastic/security-team/issues/8810 - https://github.com/elastic/security-team/issues/8904 - https://github.com/elastic/security-team/issues/8906 - https://github.com/elastic/security-team/issues/8907 - https://github.com/elastic/security-team/issues/8905 - https://github.com/elastic/security-team/issues/8942 - https://github.com/elastic/security-team/issues/8943 - https://github.com/elastic/security-team/issues/8944 - https://github.com/elastic/security-team/issues/9587 - https://github.com/elastic/security-team/issues/9589 - https://github.com/elastic/security-team/issues/9663 - https://github.com/elastic/security-team/issues/9411 - https://github.com/elastic/security-team/issues/9771 - https://github.com/elastic/security-team/issues/9773 - https://github.com/elastic/security-team/issues/8369Point of contact: @tomsonpl @paul-tavares @caitlinbetz @dasansol92
Test environments:
Additional info
Prerequisites, privileges, feature flags:
ESS: