Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Security Solution] Add alert and cloud insights to document flyout #195509

Merged
merged 6 commits into from
Oct 10, 2024
Merged

[Security Solution] Add alert and cloud insights to document flyout #195509

merged 6 commits into from
Oct 10, 2024

Conversation

christineweng
Copy link
Contributor

@christineweng christineweng commented Oct 8, 2024
edited by kibanamachine
Loading

Summary

This PR adds alert count, misconfiguration and vulnerabilities insights to alert/event flyout. If data is not available, the insights are hidden.

Mocks

image

Checklist

@christineweng christineweng added v9.0.0 Team:Threat Hunting Security Solution Threat Hunting Team release_note:feature Makes this part of the condensed release notes Team:Threat Hunting:Investigations Security Solution Investigations Team backport:prev-major Backport to (8.x, 8.17, 8.16) the previous major branch and other branches in development 8.16 candidate v8.16.0 labels Oct 8, 2024
@christineweng christineweng self-assigned this Oct 8, 2024
@christineweng christineweng requested review from a team as code owners October 8, 2024 21:24
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-threat-hunting (Team:Threat Hunting)

@elasticmachine
Copy link
Contributor

Pinging @elastic/security-threat-hunting-investigations (Team:Threat Hunting:Investigations)

@christineweng christineweng force-pushed the misconfig-in-alert-flyout branch from 7599021 to 2ce61ba Compare October 8, 2024 23:31
@christineweng christineweng changed the title [Security Solution] Add misconfigurations and vulnerabilities to document flyout [Security Solution] Add alert and cloud insights to document flyout Oct 8, 2024
@christineweng christineweng force-pushed the misconfig-in-alert-flyout branch from 2ce61ba to 2470081 Compare October 9, 2024 18:57
PhilippeOberti
PhilippeOberti reviewed Oct 9, 2024
View reviewed changes
Copy link
Contributor

@PhilippeOberti PhilippeOberti left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

this looks and works amazing, awesome job! I left a few comments, let me know what you think!

...s/security_solution/public/flyout/document_details/shared/components/alert_count_insight.tsx Outdated Show resolved Hide resolved
...s/security_solution/public/flyout/document_details/shared/components/alert_count_insight.tsx Show resolved Hide resolved
...urity_solution/public/flyout/document_details/shared/components/insight_distribution_bar.tsx Outdated Show resolved Hide resolved
...s/security_solution/public/flyout/document_details/shared/components/alert_count_insight.tsx Outdated Show resolved Hide resolved
...olution/public/cloud_security_posture/components/vulnerabilities/vulnerabilities_insight.tsx Outdated Show resolved Hide resolved
...olution/public/cloud_security_posture/components/vulnerabilities/vulnerabilities_insight.tsx Outdated Show resolved Hide resolved
...olution/public/cloud_security_posture/components/vulnerabilities/vulnerabilities_insight.tsx Outdated Show resolved Hide resolved
...ution/public/cloud_security_posture/components/misconfiguration/misconfiguration_insight.tsx Outdated Show resolved Hide resolved
...ution/public/cloud_security_posture/components/misconfiguration/misconfiguration_insight.tsx Outdated Show resolved Hide resolved
...ution/public/cloud_security_posture/components/misconfiguration/misconfiguration_insight.tsx Outdated Show resolved Hide resolved
@christineweng
Copy link
Contributor Author

@PhilippeOberti Thanks for all the feedback! I have updated the props and doc strings. Also moved the components into our flyout folder. I agree it is okay to stay in our folder, we have many components that we don't technically own the backend for (assistant, assignee etc.)

@christineweng
Copy link
Contributor Author

Files by Code Owner

elastic/kibana-cloud-security-posture

  • x-pack/packages/security-solution/distribution_bar/src/distribution_bar.stories.tsx
  • x-pack/packages/security-solution/distribution_bar/src/distribution_bar.test.tsx
  • x-pack/packages/security-solution/distribution_bar/src/distribution_bar.tsx
  • x-pack/plugins/security_solution/public/cloud_security_posture/components/misconfiguration/misconfiguration_preview.tsx

elastic/security-threat-hunting-investigations & elastic/security-solution

  • x-pack/plugins/security_solution/public/flyout/document_details/left/components/host_details.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/left/components/host_details.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/left/components/test_ids.ts
  • x-pack/plugins/security_solution/public/flyout/document_details/left/components/user_details.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/left/components/user_details.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/right/components/host_entity_overview.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/right/components/host_entity_overview.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/right/components/test_ids.ts
  • x-pack/plugins/security_solution/public/flyout/document_details/right/components/user_entity_overview.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/right/components/user_entity_overview.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/alert_count_insight.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/alert_count_insight.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/insight_distribution_bar.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/insight_distribution_bar.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/misconfiguration_insight.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/misconfiguration_insight.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/test_ids.ts
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/vulnerabilities_insight.test.tsx
  • x-pack/plugins/security_solution/public/flyout/document_details/shared/components/vulnerabilities_insight.tsx

PhilippeOberti
PhilippeOberti approved these changes Oct 9, 2024
View reviewed changes
Copy link
Contributor

@PhilippeOberti PhilippeOberti left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

thanks for making all the changes. Code looks great!

I left one last comment regarding the count shown next to the distribution chart. This is a non blocker (and could even be not desired)

...urity_solution/public/flyout/document_details/shared/components/insight_distribution_bar.tsx Outdated Show resolved Hide resolved
@christineweng christineweng enabled auto-merge (squash) October 10, 2024 16:24
@elasticmachine
Copy link
Contributor

elasticmachine commented Oct 10, 2024
edited
Loading

💔 Build Failed

Failed CI Steps

Test Failures

  • [job] [logs] Detection Engine - Security Solution Cypress Tests #1 / Detection ES|QL rules, creation Alert suppression shows custom ES|QL field in investigation fields autocomplete and saves it in rule shows custom ES|QL field in investigation fields autocomplete and saves it in rule
  • [job] [logs] Detection Engine - Security Solution Cypress Tests #2 / Detection ES|QL rules, edit with configured suppression displays suppress options correctly on edit form and allows its editing displays suppress options correctly on edit form and allows its editing
  • [job] [logs] Detection Engine - Security Solution Cypress Tests #2 / Detection ES|QL rules, edit without suppression enables suppression on time interval enables suppression on time interval
  • [job] [logs] Investigations - Security Solution Cypress Tests #7 / Multiple indicators Indicator page search should handle all search actions should handle all search actions

Metrics [docs]

Module Count

Fewer modules leads to a faster build time

id before after diff
securitySolution 5945 5949 +4

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
securitySolution 20.6MB 20.7MB +107.0KB
Unknown metric groups

API count

id before after diff
@kbn/security-solution-distribution-bar 6 7 +1

History

cc @christineweng

@christineweng christineweng merged commit cd217c0 into elastic:main Oct 10, 2024
42 checks passed
@kibanamachine
Copy link
Contributor

Starting backport for target branches: 8.15, 8.x

https://github.com/elastic/kibana/actions/runs/11281745729

kibanamachine pushed a commit to kibanamachine/kibana that referenced this pull request Oct 10, 2024
@christineweng
[Security Solution] Add alert and cloud insights to document flyout (e…
e51b765 
…lastic#195509)

## Summary

This PR adds alert count, misconfiguration and vulnerabilities insights
to alert/event flyout. If data is not available, the insights are
hidden.

[Mocks](https://www.figma.com/design/ubvhBGHee58diJNvSiy0GZ/%5B8.%2B%5D-%5BAlerts%5D-Expandable-Event-Flyout?node-id=8017-179782&node-type=canvas&t=0YjHfPi9zOUFUScc-0)

![image](https://github.com/user-attachments/assets/ba706ab8-448a-4286-8229-c4c398136638)

### Checklist

- [x] Any text added follows [EUI's writing
guidelines](https://elastic.github.io/eui/#/guidelines/writing), uses
sentence case text and includes [i18n
support](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md)
- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios

(cherry picked from commit cd217c0)
@kibanamachine kibanamachine mentioned this pull request Oct 10, 2024
Merged
@kibanamachine
Copy link
Contributor

💔 Some backports could not be created

Status Branch Result
8.15 Backport failed because of merge conflicts
8.x

Note: Successful backport PRs will be merged automatically after passing CI.

Manual backport

To create the backport manually run:

node scripts/backport --pr 195509

Questions ?

Please refer to the Backport tool documentation

kibanamachine added a commit that referenced this pull request Oct 10, 2024
@kibanamachine @christineweng
[8.x] [Security Solution] Add alert and cloud insights to document fl…
e435c47 
…yout (#195509) (#195825)

# Backport

This will backport the following commits from `main` to `8.x`:
- [[Security Solution] Add alert and cloud insights to document flyout
(#195509)](#195509)

<!--- Backport version: 9.4.3 -->

### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)

<!--BACKPORT
[{"author":{"name":"christineweng","email":"[email protected]"},"sourceCommit":{"committedDate":"2024-10-10T20:46:51Z","message":"[Security
Solution] Add alert and cloud insights to document flyout
(#195509)\n\n## Summary\r\n\r\nThis PR adds alert count,
misconfiguration and vulnerabilities insights\r\nto alert/event flyout.
If data is not available, the insights
are\r\nhidden.\r\n\r\n\r\n[Mocks](https://www.figma.com/design/ubvhBGHee58diJNvSiy0GZ/%5B8.%2B%5D-%5BAlerts%5D-Expandable-Event-Flyout?node-id=8017-179782&node-type=canvas&t=0YjHfPi9zOUFUScc-0)\r\n\r\n\r\n![image](https://github.com/user-attachments/assets/ba706ab8-448a-4286-8229-c4c398136638)\r\n\r\n###
Checklist\r\n\r\n- [x] Any text added follows [EUI's
writing\r\nguidelines](https://elastic.github.io/eui/#/guidelines/writing),
uses\r\nsentence case text and includes
[i18n\r\nsupport](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md)\r\n-
[x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"cd217c072fc786cb76ee47d885501688507c2dde","branchLabelMapping":{"^v9.0.0$":"main","^v8.16.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["v9.0.0","Team:Threat
Hunting","release_note:feature","Team:Threat
Hunting:Investigations","backport:prev-major","8.16
candidate","v8.16.0"],"title":"[Security Solution] Add alert and cloud
insights to document
flyout","number":195509,"url":"https://github.com/elastic/kibana/pull/195509","mergeCommit":{"message":"[Security
Solution] Add alert and cloud insights to document flyout
(#195509)\n\n## Summary\r\n\r\nThis PR adds alert count,
misconfiguration and vulnerabilities insights\r\nto alert/event flyout.
If data is not available, the insights
are\r\nhidden.\r\n\r\n\r\n[Mocks](https://www.figma.com/design/ubvhBGHee58diJNvSiy0GZ/%5B8.%2B%5D-%5BAlerts%5D-Expandable-Event-Flyout?node-id=8017-179782&node-type=canvas&t=0YjHfPi9zOUFUScc-0)\r\n\r\n\r\n![image](https://github.com/user-attachments/assets/ba706ab8-448a-4286-8229-c4c398136638)\r\n\r\n###
Checklist\r\n\r\n- [x] Any text added follows [EUI's
writing\r\nguidelines](https://elastic.github.io/eui/#/guidelines/writing),
uses\r\nsentence case text and includes
[i18n\r\nsupport](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md)\r\n-
[x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"cd217c072fc786cb76ee47d885501688507c2dde"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.0.0","branchLabelMappingKey":"^v9.0.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/195509","number":195509,"mergeCommit":{"message":"[Security
Solution] Add alert and cloud insights to document flyout
(#195509)\n\n## Summary\r\n\r\nThis PR adds alert count,
misconfiguration and vulnerabilities insights\r\nto alert/event flyout.
If data is not available, the insights
are\r\nhidden.\r\n\r\n\r\n[Mocks](https://www.figma.com/design/ubvhBGHee58diJNvSiy0GZ/%5B8.%2B%5D-%5BAlerts%5D-Expandable-Event-Flyout?node-id=8017-179782&node-type=canvas&t=0YjHfPi9zOUFUScc-0)\r\n\r\n\r\n![image](https://github.com/user-attachments/assets/ba706ab8-448a-4286-8229-c4c398136638)\r\n\r\n###
Checklist\r\n\r\n- [x] Any text added follows [EUI's
writing\r\nguidelines](https://elastic.github.io/eui/#/guidelines/writing),
uses\r\nsentence case text and includes
[i18n\r\nsupport](https://github.com/elastic/kibana/blob/main/packages/kbn-i18n/README.md)\r\n-
[x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"cd217c072fc786cb76ee47d885501688507c2dde"}},{"branch":"8.x","label":"v8.16.0","branchLabelMappingKey":"^v8.16.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->

Co-authored-by: christineweng <[email protected]>
@christineweng christineweng added backport:prev-minor Backport to (8.x) the previous minor version (i.e. one version back from main) and removed backport:prev-major Backport to (8.x, 8.17, 8.16) the previous major branch and other branches in development labels Oct 10, 2024
@kibanamachine
Copy link
Contributor

Starting backport for target branches: 8.x

https://github.com/elastic/kibana/actions/runs/11283760507

@kibanamachine
Copy link
Contributor

💔 All backports failed

Status Branch Result
8.x Cherrypick failed because the selected commit (cd217c0) is empty. It looks like the commit was already backported in #195825

Manual backport

To create the backport manually run:

node scripts/backport --pr 195509

Questions ?

Please refer to the Backport tool documentation

@christineweng christineweng mentioned this pull request Oct 16, 2024
Merged
1 task
christineweng added a commit that referenced this pull request Oct 17, 2024
@christineweng
[Security Solution] Document details flyout - update insight KPI count (
7195141 
#196617)

## Summary

This PR made some updates to the insights KPI following
#195509

- Updated all the counts to be total
alerts/misconfigurations/vulnerabilities
- Clicking on the count badge opens timeline (alerts) or entity preview
- Revert the order of the distribution bar for alerts to align with
others



https://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6

Latest design

![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)




### Checklist

- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios
kibanamachine pushed a commit to kibanamachine/kibana that referenced this pull request Oct 17, 2024
@christineweng
[Security Solution] Document details flyout - update insight KPI count (
970654c 
elastic#196617)

## Summary

This PR made some updates to the insights KPI following
elastic#195509

- Updated all the counts to be total
alerts/misconfigurations/vulnerabilities
- Clicking on the count badge opens timeline (alerts) or entity preview
- Revert the order of the distribution bar for alerts to align with
others

https://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6

Latest design

![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)

### Checklist

- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios

(cherry picked from commit 7195141)
kibanamachine pushed a commit to kibanamachine/kibana that referenced this pull request Oct 17, 2024
@christineweng
[Security Solution] Document details flyout - update insight KPI count (
b34d56e 
elastic#196617)

## Summary

This PR made some updates to the insights KPI following
elastic#195509

- Updated all the counts to be total
alerts/misconfigurations/vulnerabilities
- Clicking on the count badge opens timeline (alerts) or entity preview
- Revert the order of the distribution bar for alerts to align with
others

https://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6

Latest design

![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)

### Checklist

- [x] [Unit or functional
tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)
were updated or added to match the most common scenarios

(cherry picked from commit 7195141)
kibanamachine added a commit that referenced this pull request Oct 18, 2024
@kibanamachine @christineweng
[8.16] [Security Solution] Document details flyout - update insight K…
48ac7dc 
…PI count (#196617) (#196779)

# Backport

This will backport the following commits from `main` to `8.16`:
- [[Security Solution] Document details flyout - update insight KPI
count (#196617)](#196617)

<!--- Backport version: 9.4.3 -->

### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)

<!--BACKPORT
[{"author":{"name":"christineweng","email":"[email protected]"},"sourceCommit":{"committedDate":"2024-10-17T22:57:52Z","message":"[Security
Solution] Document details flyout - update insight KPI count
(#196617)\n\n## Summary\r\n\r\nThis PR made some updates to the insights
KPI following\r\nhttps://github.com//pull/195509\r\n\r\n-
Updated all the counts to be
total\r\nalerts/misconfigurations/vulnerabilities\r\n- Clicking on the
count badge opens timeline (alerts) or entity preview\r\n- Revert the
order of the distribution bar for alerts to align
with\r\nothers\r\n\r\n\r\n\r\nhttps://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6\r\n\r\nLatest
design\r\n\r\n![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)\r\n\r\n\r\n\r\n\r\n###
Checklist\r\n\r\n- [x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"71951416ca045cf0d2fee74d88faa0f717f487c6","branchLabelMapping":{"^v9.0.0$":"main","^v8.17.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["backport","release_note:skip","v9.0.0","Team:Threat
Hunting","Team:Threat
Hunting:Investigations","v8.16.0"],"title":"[Security Solution] Document
details flyout - update insight KPI
count","number":196617,"url":"https://github.com/elastic/kibana/pull/196617","mergeCommit":{"message":"[Security
Solution] Document details flyout - update insight KPI count
(#196617)\n\n## Summary\r\n\r\nThis PR made some updates to the insights
KPI following\r\nhttps://github.com//pull/195509\r\n\r\n-
Updated all the counts to be
total\r\nalerts/misconfigurations/vulnerabilities\r\n- Clicking on the
count badge opens timeline (alerts) or entity preview\r\n- Revert the
order of the distribution bar for alerts to align
with\r\nothers\r\n\r\n\r\n\r\nhttps://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6\r\n\r\nLatest
design\r\n\r\n![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)\r\n\r\n\r\n\r\n\r\n###
Checklist\r\n\r\n- [x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"71951416ca045cf0d2fee74d88faa0f717f487c6"}},"sourceBranch":"main","suggestedTargetBranches":["8.16"],"targetPullRequestStates":[{"branch":"main","label":"v9.0.0","branchLabelMappingKey":"^v9.0.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/196617","number":196617,"mergeCommit":{"message":"[Security
Solution] Document details flyout - update insight KPI count
(#196617)\n\n## Summary\r\n\r\nThis PR made some updates to the insights
KPI following\r\nhttps://github.com//pull/195509\r\n\r\n-
Updated all the counts to be
total\r\nalerts/misconfigurations/vulnerabilities\r\n- Clicking on the
count badge opens timeline (alerts) or entity preview\r\n- Revert the
order of the distribution bar for alerts to align
with\r\nothers\r\n\r\n\r\n\r\nhttps://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6\r\n\r\nLatest
design\r\n\r\n![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)\r\n\r\n\r\n\r\n\r\n###
Checklist\r\n\r\n- [x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"71951416ca045cf0d2fee74d88faa0f717f487c6"}},{"branch":"8.16","label":"v8.16.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->

Co-authored-by: christineweng <[email protected]>
kibanamachine added a commit that referenced this pull request Oct 18, 2024
@kibanamachine @christineweng
[8.x] [Security Solution] Document details flyout - update insight KP…
09edf03 
…I count (#196617) (#196780)

# Backport

This will backport the following commits from `main` to `8.x`:
- [[Security Solution] Document details flyout - update insight KPI
count (#196617)](#196617)

<!--- Backport version: 9.4.3 -->

### Questions ?
Please refer to the [Backport tool
documentation](https://github.com/sqren/backport)

<!--BACKPORT
[{"author":{"name":"christineweng","email":"[email protected]"},"sourceCommit":{"committedDate":"2024-10-17T22:57:52Z","message":"[Security
Solution] Document details flyout - update insight KPI count
(#196617)\n\n## Summary\r\n\r\nThis PR made some updates to the insights
KPI following\r\nhttps://github.com//pull/195509\r\n\r\n-
Updated all the counts to be
total\r\nalerts/misconfigurations/vulnerabilities\r\n- Clicking on the
count badge opens timeline (alerts) or entity preview\r\n- Revert the
order of the distribution bar for alerts to align
with\r\nothers\r\n\r\n\r\n\r\nhttps://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6\r\n\r\nLatest
design\r\n\r\n![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)\r\n\r\n\r\n\r\n\r\n###
Checklist\r\n\r\n- [x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"71951416ca045cf0d2fee74d88faa0f717f487c6","branchLabelMapping":{"^v9.0.0$":"main","^v8.17.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["backport","release_note:skip","v9.0.0","Team:Threat
Hunting","Team:Threat
Hunting:Investigations","v8.16.0"],"title":"[Security Solution] Document
details flyout - update insight KPI
count","number":196617,"url":"https://github.com/elastic/kibana/pull/196617","mergeCommit":{"message":"[Security
Solution] Document details flyout - update insight KPI count
(#196617)\n\n## Summary\r\n\r\nThis PR made some updates to the insights
KPI following\r\nhttps://github.com//pull/195509\r\n\r\n-
Updated all the counts to be
total\r\nalerts/misconfigurations/vulnerabilities\r\n- Clicking on the
count badge opens timeline (alerts) or entity preview\r\n- Revert the
order of the distribution bar for alerts to align
with\r\nothers\r\n\r\n\r\n\r\nhttps://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6\r\n\r\nLatest
design\r\n\r\n![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)\r\n\r\n\r\n\r\n\r\n###
Checklist\r\n\r\n- [x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"71951416ca045cf0d2fee74d88faa0f717f487c6"}},"sourceBranch":"main","suggestedTargetBranches":["8.16"],"targetPullRequestStates":[{"branch":"main","label":"v9.0.0","branchLabelMappingKey":"^v9.0.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/196617","number":196617,"mergeCommit":{"message":"[Security
Solution] Document details flyout - update insight KPI count
(#196617)\n\n## Summary\r\n\r\nThis PR made some updates to the insights
KPI following\r\nhttps://github.com//pull/195509\r\n\r\n-
Updated all the counts to be
total\r\nalerts/misconfigurations/vulnerabilities\r\n- Clicking on the
count badge opens timeline (alerts) or entity preview\r\n- Revert the
order of the distribution bar for alerts to align
with\r\nothers\r\n\r\n\r\n\r\nhttps://github.com/user-attachments/assets/6d65503a-26b1-4db4-9118-a63ad66ac7b6\r\n\r\nLatest
design\r\n\r\n![image](https://github.com/user-attachments/assets/6d01aaf7-d87d-4ba2-afae-0845e6d3efc7)\r\n\r\n\r\n\r\n\r\n###
Checklist\r\n\r\n- [x] [Unit or
functional\r\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\r\nwere
updated or added to match the most common
scenarios","sha":"71951416ca045cf0d2fee74d88faa0f717f487c6"}},{"branch":"8.16","label":"v8.16.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}]
BACKPORT-->

Co-authored-by: christineweng <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@PhilippeOberti PhilippeOberti PhilippeOberti approved these changes

@animehart animehart animehart approved these changes

@maxcold maxcold Awaiting requested review from maxcold

Assignees

@christineweng christineweng

Labels
8.16 candidate backport:prev-minor Backport to (8.x) the previous minor version (i.e. one version back from main) release_note:feature Makes this part of the condensed release notes Team:Threat Hunting:Investigations Security Solution Investigations Team Team:Threat Hunting Security Solution Threat Hunting Team v8.16.0 v9.0.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@christineweng @elasticmachine @kibanamachine @animehart @PhilippeOberti