From bc664b50df98aab6ad157491ad60d7f4fd628f4b Mon Sep 17 00:00:00 2001 From: epartington Date: Thu, 11 Jul 2024 05:37:04 -0400 Subject: [PATCH] PrismaCloud V2 dashboard update (#35106) * prismaCloud dashboard update adding sourcebrand for prismacloud v2 to the dashboard to include incidents from that integration. * Update 4_3_7.md updating to catch the syntax issues in release notes * Update 4_3_7.md updated release notes * Update 4_3_7.md release notes update * Update Packs/PrismaCloud/ReleaseNotes/4_3_7.md Co-authored-by: Sasha Sokolovich <88268646+ssokolovich@users.noreply.github.com> --------- Co-authored-by: Sasha Sokolovich <88268646+ssokolovich@users.noreply.github.com> --- Packs/PrismaCloud/CONTRIBUTORS.json | 1 + .../Dashboards/dashboard-Prisma_Cloud_Incidents.json | 12 ++++++------ .../Integrations/PrismaCloudV2/PrismaCloudV2.py | 6 ++---- Packs/PrismaCloud/ReleaseNotes/4_3_7.md | 12 ++++++++++++ Packs/PrismaCloud/pack_metadata.json | 2 +- 5 files changed, 22 insertions(+), 11 deletions(-) create mode 100644 Packs/PrismaCloud/CONTRIBUTORS.json create mode 100644 Packs/PrismaCloud/ReleaseNotes/4_3_7.md diff --git a/Packs/PrismaCloud/CONTRIBUTORS.json b/Packs/PrismaCloud/CONTRIBUTORS.json new file mode 100644 index 000000000000..1e750c56f603 --- /dev/null +++ b/Packs/PrismaCloud/CONTRIBUTORS.json @@ -0,0 +1 @@ +["Eric Partington"] \ No newline at end of file diff --git a/Packs/PrismaCloud/Dashboards/dashboard-Prisma_Cloud_Incidents.json b/Packs/PrismaCloud/Dashboards/dashboard-Prisma_Cloud_Incidents.json index 19e369464307..a2d9c2fa637f 100644 --- a/Packs/PrismaCloud/Dashboards/dashboard-Prisma_Cloud_Incidents.json +++ b/Packs/PrismaCloud/Dashboards/dashboard-Prisma_Cloud_Incidents.json @@ -44,7 +44,7 @@ "prevName": "Active Incidents - Line chart", "dataType": "incidents", "widgetType": "line", - "query": "-category:job sourceBrand:RedLock", + "query": "-category:job (sourceBrand:RedLock or sourceBrand:\"PrismaCloud v2\")", "isPredefined": false, "dateRange": { "fromDate": "0001-01-01T00:00:00Z", @@ -99,7 +99,7 @@ "prevName": "Active Incidents - Line chart", "dataType": "incidents", "widgetType": "bar", - "query": "-category:job sourceBrand:RedLock", + "query": "-category:job (sourceBrand:RedLock or sourceBrand:\"PrismaCloud v2\")", "isPredefined": false, "dateRange": { "fromDate": "0001-01-01T00:00:00Z", @@ -155,7 +155,7 @@ "prevName": "Active Incidents - Line chart", "dataType": "incidents", "widgetType": "pie", - "query": "-category:job sourceBrand:RedLock", + "query": "-category:job (sourceBrand:RedLock or sourceBrand:\"PrismaCloud v2\")", "isPredefined": false, "dateRange": { "fromDate": "0001-01-01T00:00:00Z", @@ -210,7 +210,7 @@ "prevName": "Active Incidents - Line chart", "dataType": "incidents", "widgetType": "column", - "query": "-category:job sourceBrand:RedLock", + "query": "-category:job (sourceBrand:RedLock or sourceBrand:\"PrismaCloud v2\")", "isPredefined": false, "dateRange": { "fromDate": "0001-01-01T00:00:00Z", @@ -266,7 +266,7 @@ "prevName": "Active Incidents - Line chart", "dataType": "incidents", "widgetType": "pie", - "query": "-category:job sourceBrand:RedLock", + "query": "-category:job (sourceBrand:RedLock or sourceBrand:\"PrismaCloud v2\")", "isPredefined": false, "dateRange": { "fromDate": "0001-01-01T00:00:00Z", @@ -321,7 +321,7 @@ "prevName": "Active Incidents - Line chart", "dataType": "incidents", "widgetType": "pie", - "query": "-category:job sourceBrand:RedLock", + "query": "-category:job (sourceBrand:RedLock or sourceBrand:\"PrismaCloud v2\")", "isPredefined": false, "dateRange": { "fromDate": "0001-01-01T00:00:00Z", diff --git a/Packs/PrismaCloud/Integrations/PrismaCloudV2/PrismaCloudV2.py b/Packs/PrismaCloud/Integrations/PrismaCloudV2/PrismaCloudV2.py index 8e818606440f..afab837a0e7c 100644 --- a/Packs/PrismaCloud/Integrations/PrismaCloudV2/PrismaCloudV2.py +++ b/Packs/PrismaCloud/Integrations/PrismaCloudV2/PrismaCloudV2.py @@ -1,9 +1,7 @@ -import demistomock as demisto # noqa: F401 -from CommonServerPython import * # noqa: F401 from copy import deepcopy - import json - +from CommonServerPython import * # noqa: F401 +import demistomock as demisto # noqa: F401 ''' CONSTANTS ''' diff --git a/Packs/PrismaCloud/ReleaseNotes/4_3_7.md b/Packs/PrismaCloud/ReleaseNotes/4_3_7.md new file mode 100644 index 000000000000..99ccb73b1df0 --- /dev/null +++ b/Packs/PrismaCloud/ReleaseNotes/4_3_7.md @@ -0,0 +1,12 @@ +#### Dashboards + +##### Prisma Cloud Incidents + +- Updated the Dashboard to include current sourceBrand name of PrismaCloud v2. + +#### Integrations + +##### Prisma Cloud v2 + +- Internal improvements. + diff --git a/Packs/PrismaCloud/pack_metadata.json b/Packs/PrismaCloud/pack_metadata.json index 43b149bf5ce9..ccd3f2482c2e 100644 --- a/Packs/PrismaCloud/pack_metadata.json +++ b/Packs/PrismaCloud/pack_metadata.json @@ -2,7 +2,7 @@ "name": "Prisma Cloud by Palo Alto Networks", "description": "Automate and unify security incident response across your cloud environments, while still giving a degree of control to dedicated cloud teams.", "support": "xsoar", - "currentVersion": "4.3.6", + "currentVersion": "4.3.7", "author": "Cortex XSOAR", "url": "https://www.paloaltonetworks.com/cortex", "email": "",