With recent addition of limit param to specify a specific limit, this no causes SentinelOne to completely fail do to some endpoints having a max limit of 1000. With the limit being set to 20000 when not using PQ, this is not necessary due to fetching paginated data with dv results already which will fetch all returned results regardless of the limit.
What side of Surveyor is impacted?
[ ] Definition File
[x] Code/Logic
[ ] Other (please explain)
What product is impacted?
[ ] All Products
[ ] Carbon Black Response
[ ] Carbon Black Threat Hunter
[ ] Defender for Endpoints
[ ] SentinelOne
[ ] Cortex
[ ] Other
Steps to reproduce
What did you do?
What is the command line you're running that is causing the error?
Command line 'surveyor --profile default --query 'SrcProcName = \"explorer.exe\"' s1 --creds --dv'
Expected behavior
No error should occur and query should execute for both PQ and DV
Describe the bug
With recent addition of limit param to specify a specific limit, this no causes SentinelOne to completely fail do to some endpoints having a max limit of 1000. With the limit being set to 20000 when not using PQ, this is not necessary due to fetching paginated data with dv results already which will fetch all returned results regardless of the limit.
What side of Surveyor is impacted?
What product is impacted?
Steps to reproduce
What did you do?
What is the command line you're running that is causing the error? Command line 'surveyor --profile default --query 'SrcProcName = \"explorer.exe\"' s1 --creds --dv'
Expected behavior
No error should occur and query should execute for both PQ and DV