Remove callout syntax in Example

elastic · Dec 20, 2023 · 0a8c2b2 · 0a8c2b2
1 parent 258813d
commit 0a8c2b2
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/docs/detections/api/rules/rules-api-create.asciidoc b/docs/detections/api/rules/rules-api-create.asciidoc
@@ -1072,15 +1072,15 @@ POST api/detection_engine/rules
   "rule_id": "process_started_by_ms_office_program",
   "risk_score": 50,
   "description": "Process started by MS Office program - possible payload",
-  "interval": "1h", <1>
+  "interval": "1h",
   "name": "MS Office child process",
   "severity": "low",
   "tags": [
    "child process",
    "ms office"
    ],
   "type": "query",
-  "from": "now-70m", <2>
+  "from": "now-70m",
   "query": "process.parent.name:EXCEL.EXE or process.parent.name:MSPUB.EXE or process.parent.name:OUTLOOK.EXE or process.parent.name:POWERPNT.EXE or process.parent.name:VISIO.EXE or process.parent.name:WINWORD.EXE",
   "language": "kuery",
   "filters": [