Closed patel-bhavin closed 1 month ago
This PR is failing on contentctl build for https://github.com/splunk/security_content/pull/3026 , since there is a detection which this lookup admon_groups_def which not present in the ESCU app.
admon_groups_def
The lookup is shipped by another app called : SA-admon. Hence adding it to this exclusion list!
SA-admon
This PR is failing on contentctl build for https://github.com/splunk/security_content/pull/3026 , since there is a detection which this lookup
admon_groups_defwhich not present in the ESCU app.The lookup is shipped by another app called :
SA-admon. Hence adding it to this exclusion list!