From e8daee1554033f75a5d4dd6cae14857b0ab1a766 Mon Sep 17 00:00:00 2001 From: conor-mcnally Date: Wed, 8 Jan 2025 10:00:45 +0000 Subject: [PATCH] Check for whitespace and change version back to 11.1.3 --- plugins/sentinelone/.CHECKSUM | 8 ++++---- plugins/sentinelone/bin/komand_sentinelone | 2 +- plugins/sentinelone/help.md | 3 +-- .../komand_sentinelone/tasks/monitor_logs/schema.py | 4 +--- plugins/sentinelone/komand_sentinelone/util/helper.py | 7 +++++-- plugins/sentinelone/plugin.spec.yaml | 5 ++--- plugins/sentinelone/setup.py | 2 +- 7 files changed, 15 insertions(+), 16 deletions(-) diff --git a/plugins/sentinelone/.CHECKSUM b/plugins/sentinelone/.CHECKSUM index ccc38e80b7..12510efa39 100644 --- a/plugins/sentinelone/.CHECKSUM +++ b/plugins/sentinelone/.CHECKSUM @@ -1,7 +1,7 @@ { - "spec": "3c5580352019ace6c6b4a0bbb5fad9d9", - "manifest": "38aff416d59c85b3fc4b18618290accf", - "setup": "adc2b69e7c46068b1d13fe8ae3dc01bd", + "spec": "48ac05b73973308fdc9ec8bc325a1372", + "manifest": "bf2f37bb010ec31daf0a4aee3ae45b89", + "setup": "1e8d3387ed4d46dc2171d7ee9c3c4a2c", "schemas": [ { "identifier": "activities_list/schema.py", @@ -129,7 +129,7 @@ }, { "identifier": "monitor_logs/schema.py", - "hash": "6ee7bc26267a2fd719aecccb08ec7f18" + "hash": "90852af2f999f070b9386c3f9cf6f953" }, { "identifier": "get_threats/schema.py", diff --git a/plugins/sentinelone/bin/komand_sentinelone b/plugins/sentinelone/bin/komand_sentinelone index 04b1f34f2f..752ccb6e9d 100755 --- a/plugins/sentinelone/bin/komand_sentinelone +++ b/plugins/sentinelone/bin/komand_sentinelone @@ -6,7 +6,7 @@ from sys import argv Name = "SentinelOne" Vendor = "rapid7" -Version = "11.1.4" +Version = "11.1.3" Description = "The SentinelOne plugin allows you to manage and mitigate all your security operations through SentinelOne" diff --git a/plugins/sentinelone/help.md b/plugins/sentinelone/help.md index 8ff4ccf005..769f1d0f93 100644 --- a/plugins/sentinelone/help.md +++ b/plugins/sentinelone/help.md @@ -2351,8 +2351,7 @@ Example output: # Version History -* 11.1.4 - Fix issue with URL input validation -* 11.1.3 - Updated SDK to the latest version (v6.2.2) | Address vulnerabilities +* 11.1.3 - Updated SDK to the latest version (v6.2.2) | Address vulnerabilities | Fix issue with URL input validation * 11.1.2 - Resolve issue where unexpected timestamps returned from SentinelOne were not parsed in task `Monitor Logs` | Update plugin to be FedRAMP compliant * 11.1.1 - Updated Plugin connection to improve `instance` input usability * 11.1.0 - Added connection test for task `Monitor Logs` | Update SDK diff --git a/plugins/sentinelone/komand_sentinelone/tasks/monitor_logs/schema.py b/plugins/sentinelone/komand_sentinelone/tasks/monitor_logs/schema.py index 3cdfbc0241..86ffe4d536 100644 --- a/plugins/sentinelone/komand_sentinelone/tasks/monitor_logs/schema.py +++ b/plugins/sentinelone/komand_sentinelone/tasks/monitor_logs/schema.py @@ -43,9 +43,7 @@ class MonitorLogsOutput(insightconnect_plugin_runtime.Output): "type": "array", "title": "Logs", "description": "List of activity, device control event, and threat logs within the specified time range", - "items": { - "type": "object" - }, + "items": {}, "definitions": {} } """) diff --git a/plugins/sentinelone/komand_sentinelone/util/helper.py b/plugins/sentinelone/komand_sentinelone/util/helper.py index d78ba9d78d..babf1f8b47 100755 --- a/plugins/sentinelone/komand_sentinelone/util/helper.py +++ b/plugins/sentinelone/komand_sentinelone/util/helper.py @@ -86,11 +86,14 @@ def format_subdomain(instance: str) -> str: If an input subdomain contains a scheme or the SentinelOne second-level domain, strip these values """ + # Remove leading and trailing whitespace + instance = instance.strip() + # Remove the scheme if it exists if instance.startswith("http://"): - instance = instance[len("http://") :] + instance = instance[7:] elif instance.startswith("https://"): - instance = instance[len("https://") :] + instance = instance[8:] # Remove the SentinelOne domain suffix if ".sentinelone.net" in instance: diff --git a/plugins/sentinelone/plugin.spec.yaml b/plugins/sentinelone/plugin.spec.yaml index 523bd781a3..42d3b9546a 100644 --- a/plugins/sentinelone/plugin.spec.yaml +++ b/plugins/sentinelone/plugin.spec.yaml @@ -3,7 +3,7 @@ extension: plugin products: [insightconnect] name: sentinelone title: SentinelOne -version: 11.1.4 +version: 11.1.3 connection_version: 10 cloud_ready: true fedramp_ready: true @@ -58,8 +58,7 @@ hub_tags: keywords: [sentinelone, endpoint, detection, cloud_enabled] features: [] version_history: - - "11.1.4 - Fix issue with URL input validation" - - "11.1.3 - Updated SDK to the latest version (v6.2.2) | Address vulnerabilities" + - "11.1.3 - Updated SDK to the latest version (v6.2.2) | Address vulnerabilities | Fix issue with URL input validation" - "11.1.2 - Resolve issue where unexpected timestamps returned from SentinelOne were not parsed in task `Monitor Logs` | Update plugin to be FedRAMP compliant" - "11.1.1 - Updated Plugin connection to improve `instance` input usability" - "11.1.0 - Added connection test for task `Monitor Logs` | Update SDK" diff --git a/plugins/sentinelone/setup.py b/plugins/sentinelone/setup.py index 7087fce7b9..4372ef72db 100644 --- a/plugins/sentinelone/setup.py +++ b/plugins/sentinelone/setup.py @@ -3,7 +3,7 @@ setup(name="sentinelone-rapid7-plugin", - version="11.1.4", + version="11.1.3", description="The SentinelOne plugin allows you to manage and mitigate all your security operations through SentinelOne", author="rapid7", author_email="",