Skip to content

[FR] Update custom rules setup #3678

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 15, 2024
Merged

[FR] Update custom rules setup #3678

merged 1 commit into from
May 15, 2024

Conversation

Mikaayenson
Copy link
Contributor

@Mikaayenson Mikaayenson commented May 15, 2024
edited
Loading

Issues

N/A

Summary

Adds the building block rule folder as part of the default setup

Testing

Run python -m detection-rules custom-rules setup-config <path> should generate a config with the bbr_rules_dir populated instead of an empty [].

@Mikaayenson Mikaayenson added the enhancement New feature or request label May 15, 2024
@Mikaayenson Mikaayenson requested a review from traut May 15, 2024 14:09
@Mikaayenson Mikaayenson self-assigned this May 15, 2024
@botelastic botelastic bot added the python Internal python for the repository label May 15, 2024
eric-forte-elastic
eric-forte-elastic approved these changes May 15, 2024
View reviewed changes
Copy link
Contributor

@eric-forte-elastic eric-forte-elastic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Test works, LGTM 👍 🟢

image

@eric-forte-elastic
Copy link
Contributor

As a note, I think this will make it more confusing that having this directory is optional. Fine with this change, just noting why we did it the other way for posterity 👍

@Mikaayenson
Copy link
Contributor Author

As a note, I think this will make it more confusing that having this directory is optional. Fine with this change, just noting why we did it the other way for posterity 👍

We're already creating the folder. We just need to link it. I think it's more confusing to create the folder but not link it. And since an empty list is generating [], I think it'll confuse the users on expected format.

@Mikaayenson Mikaayenson merged commit 29d2605 into DAC-feature May 15, 2024
16 checks passed
@Mikaayenson Mikaayenson deleted the update_custom_rules_setup branch May 15, 2024 14:23
@eric-forte-elastic
Copy link
Contributor

As a note, I think this will make it more confusing that having this directory is optional. Fine with this change, just noting why we did it the other way for posterity 👍

We're already creating the folder. We just need to link it. I think it's more confusing to create the folder but not link it. And since an empty list is generating [], I think it'll confuse the users on expected format.

Good point! Would it then be better to not create the folder? Do not think it should block the PR, as this strategy is good, and is cohesive 👍

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@traut traut traut approved these changes

@eric-forte-elastic eric-forte-elastic eric-forte-elastic approved these changes

@brokensound77 brokensound77 Awaiting requested review from brokensound77

Assignees

@Mikaayenson Mikaayenson

Labels
community enhancement New feature or request python Internal python for the repository
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Mikaayenson @eric-forte-elastic @traut