Merge branch 'contrib/SEKOIA-IO_Add/SekoiaXDR' into Add/SekoiaXDR

SEKOIA-IO · Aug 1, 2024 · cc63fd8 · cc63fd8
2 parents 27d9701 + ec9c486
commit cc63fd8
Show file tree

Hide file tree

Showing 56 changed files with 866 additions and 159 deletions.
diff --git a/Packs/CofenseTriage/Integrations/CofenseTriagev2/CofenseTriagev2.yml b/Packs/CofenseTriage/Integrations/CofenseTriagev2/CofenseTriagev2.yml
@@ -402,7 +402,7 @@ script:
       description: Value of the threat indicator.
       type: string
     description: Threat Indicators that are designated by analysts as malicious, suspicious or benign.
-  dockerimage: demisto/chromium:127.0.6533.105883
+  dockerimage: demisto/chromium:126.0.6478.103218
   isfetch: true
 tests:
 - No test - partner integration (test pb exists - Cofense Triage Test)
diff --git a/Packs/CofenseTriage/ReleaseNotes/2_1_28.md b/Packs/CofenseTriage/ReleaseNotes/2_1_28.md
@@ -0,0 +1,5 @@
+
+#### Integrations
+
+##### Cofense Triage v2
+Updated the Docker image to: *demisto/chromium:126.0.6478.103218*.
diff --git a/Packs/CofenseTriage/pack_metadata.json b/Packs/CofenseTriage/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Cofense Triage",
     "description": "Cofense Triage allows users to fetch reports by using the fetch incidents capability. It also provides commands to get entities like reporters, rules, categories, and more.",
     "support": "partner",
-    "currentVersion": "2.1.27",
+    "currentVersion": "2.1.28",
     "author": "Cofense",
     "url": "https://cofense.com/contact-support/",
     "email": "[email protected]",

diff --git a/Packs/CommonTypes/IndicatorFields/indicatorfield-primary_motivation.json b/Packs/CommonTypes/IndicatorFields/indicatorfield-primary_motivation.json
@@ -27,7 +27,8 @@
         "IP",
         "Domain",
         "URL",
-        "Intrusion Set"
+        "Intrusion Set",
+        "Threat Actor"
     ],
     "associatedToAll": false,
     "unmapped": false,
@@ -36,4 +37,4 @@
     "sla": 0,
     "threshold": 72,
     "fromVersion": "5.0.0"
-}
+}
diff --git a/Packs/CommonTypes/ReleaseNotes/3_5_11.md b/Packs/CommonTypes/ReleaseNotes/3_5_11.md
@@ -0,0 +1,6 @@
+
+#### Indicator Fields
+
+##### Primary Motivation
+
+- Added Threat Actor as an associated type.
diff --git a/Packs/CommonTypes/pack_metadata.json b/Packs/CommonTypes/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Common Types",
     "description": "This Content Pack will get you up and running in no-time and provide you with the most commonly used incident & indicator fields and types.",
     "support": "xsoar",
-    "currentVersion": "3.5.10",
+    "currentVersion": "3.5.11",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",

diff --git a/Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.py b/Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.py
@@ -172,7 +172,7 @@ def get_user_id(admin_api, username):
 # Duo client return 2 different known structures of error messages
 def test_instance(admin_api):
     try:
-        admin_api.get_users()
+        admin_api.get_users(limit=1)
         demisto.results('ok')
 
     except Exception as e:

diff --git a/Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml b/Packs/DuoAdminApi/Integrations/DuoAdminApi/DuoAdminApi.yml
@@ -324,7 +324,7 @@ script:
     outputs: []
     description: Modify the user account.
     name: duoadmin-modify-user
-  dockerimage: demisto/vendors-sdk:1.0.0.87491
+  dockerimage: demisto/vendors-sdk:1.0.0.103334
   script: ''
   type: python
   subtype: python3

diff --git a/Packs/DuoAdminApi/ReleaseNotes/4_0_20.md b/Packs/DuoAdminApi/ReleaseNotes/4_0_20.md
@@ -0,0 +1,5 @@
+
+#### Integrations
+##### DUO Admin
+- Fixed an issue where ***test*** failed on timeout.
+- Updated the Docker image to: *demisto/vendors-sdk:1.0.0.103334*.