Skip to content

[8.18] [ESS][8.18] Editing, exporting, and importing prebuilt rules (backport #6563) #6660

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Mar 24, 2025
Merged

[8.18] [ESS][8.18] Editing, exporting, and importing prebuilt rules (backport #6563) #6660

merged 2 commits into from
Mar 24, 2025

Conversation

mergify[bot]
Copy link
Contributor

@mergify mergify bot commented Mar 24, 2025

Description

Partially addresses #5061 by providing docs for editing, exporting, and importing prebuilt rules (customized and non-customized). Docs for updating customized prebuilt rules are at #6568.

Twin 9.0 and Serverless PR: elastic/docs-content#893

Previews

  • Modify existing rules settings: Made a few changes to this section:
    • Added requirements to the start of the section to explain subscription needs.
    • Updated instructions for editing single rules
  • Export and import rules: Made the following changes:
    • Added requirements to the start of the section to explain subscription needs for importing and exporting custom and prebuilt rules.
    • Split up the instructions for importing and exporting rules to make the content more findable and readable
    • Added instructions for exporting individual rules
      This is an automatic backport of pull request [ESS][8.18] Editing, exporting, and importing prebuilt rules #6563 done by Mergify.

@nastasha-solomon @banderror @mergify
[ESS][8.18] Editing, exporting, and importing prebuilt rules (#6563)
7ec1b15 
* First draft

* Defined missing bulk actions

* Formatting and org fixes

* Minor change to tip about modified prebuilt rules

* possession!

* Incorporate feedback from first round of reviews.

* Cleanup

* Adds note about imported rules without base verions

* Merge branch 'issue-5061-import-export-modify' of github.com:elastic/security-docs into issue-5061-import-export-modify

* Edits

* Update docs/detections/rules-ui-manage.asciidoc

* Update docs/detections/rules-ui-manage.asciidoc

* Update docs/detections/rules-ui-manage.asciidoc

* Update docs/detections/rules-ui-manage.asciidoc

Co-authored-by: Georgii Gorbachev <[email protected]>

* Georgii's feedback pt.1

* Update docs/detections/rules-ui-manage.asciidoc

* Update docs/detections/rules-ui-manage.asciidoc

---------

Co-authored-by: Georgii Gorbachev <[email protected]>
(cherry picked from commit ed51c36)
@mergify mergify bot requested a review from a team as a code owner March 24, 2025 17:11
@mergify mergify bot added the backport label Mar 24, 2025
@github-actions GitHub Actions
Copy link

A documentation preview will be available soon.

Request a new doc build by commenting
  • Rebuild this PR: run docs-build
  • Rebuild this PR and all Elastic docs: run docs-build rebuild

run docs-build is much faster than run docs-build rebuild. A rebuild should only be needed in rare situations.

If your PR continues to fail for an unknown reason, the doc build pipeline may be broken. Elastic employees can check the pipeline status here.

@nastasha-solomon nastasha-solomon merged commit 86b5715 into 8.18 Mar 24, 2025
4 checks passed
@nastasha-solomon nastasha-solomon deleted the mergify/bp/8.18/pr-6563 branch March 24, 2025 18:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nastasha-solomon nastasha-solomon nastasha-solomon approved these changes

Assignees

@nastasha-solomon nastasha-solomon

Labels
backport
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@nastasha-solomon