[Security Solution] Prevent creation of rules with the same rule_id when importing rules concurrently #177283
Labels
bug
Fixes for quality problems that affect the customer experience
Feature:Rule Import/Export
Security Solution Detection Rule Import & Export workflow
impact:high
Addressing this issue will have a high level of impact on the quality/strength of our product.
Team:Detection Rule Management
Security Detection Rule Management Team
Team:Detections and Resp
Security Detection Response Team
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Comments
maximpn
added
bug
|
Pinging @elastic/security-solution (Team: SecuritySolution) |
|
Pinging @elastic/security-detection-rule-management (Team:Detection Rule Management) |
|
Pinging @elastic/security-detections-response (Team:Detections and Resp) |
maximpn
added
impact:medium
|
Hi @maximpn, I'm interested in working on this issue. |
4 tasks
banderror
added
8.14 candidate
and removed
Feature:Rule Management
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Epics: https://github.com/elastic/security-team/issues/1974 (internal), #174168
Summary
Under some circumstances two users may import the same rules simultaneously. Current rules import implementation doesn't have a protection against concurrently creating multiple rules with the same
rule_id.The solution should prevent creating multiple rules with the same
rule_idevent when it's done concurrently.The text was updated successfully, but these errors were encountered: