Dev securityinsights microsoft.security insights 2021 10 01 #17924
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…/2021-04-01 to version 2021-10-01
* Adds base for updating Microsoft.SecurityInsight's AlertRules from version stable/2020-01-01 to version 2021-10-01 * Updates API version in AlertRules specs and examples * Use common types in AlertRules.json and remove redundant SecurityInsights * Add AlertRules to readme * Copy action examples for alert rules * Add type:object where missing * Align CloudError with rest of the resources in this version * Update readme Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com>
* Use newest common types to align with rest of Azure * Use ErrorResponse instead of CloudError in operations Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com>
* Add AlertRules Stable version to 2021-10-01 * Fix missing alignment in common types * prettier fixes * move tactics and severity to common * fix common types file extension * more prettier fixes * Add template version field * prettier * added version to required fields * dummy change to trigger checks again
* Add onboarding states to new stable version * Update readme.md * cr fix - remove unused params
* Add missing resources and examples from 2020-01-01 * Update version in added resources and examples * Use existing common types * Remove unnesessary SecurityInsights.json * Update readme * Use sentinel common types in Incidents and Watchlist * Extract and common IncidentInfo and IncidentSeverity * Extract EntityTypes * Correct double allOf in EntityTypes * update readme * Remove eventGroupingSettings and entityMappings from GetAlertRuleTemplateById example. * rename operations.json Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com>
* add missing properties to scheduled template * prettier fixes * restore templates example after merge * fix templates example after merge and run prettier
…s and our back-end. (#17472)
* First * readMe * cloudError * CloudError * schema * prettier * Fix * test * fix identifier * fix description * fix lable * fix lable * ownerInfo * Fix * types * conditionMaxLength Co-authored-by: Roy Reinhorn <roreinho@microsoft.com>
* Remove OperationalInsightsResourceProvider parameter in ThreatIntelligence * Remove OperationalInsightProviderParameter from Watchlist * Align stable operation names with preview * Add missing disciminator property in ThreatIntelligence
|
Hi, @anat-gilenson Thanks for your PR. I am workflow bot for review process. Here are some small tips. Any feedback about review process or workflow bot, pls contact swagger and tools team. vscswagger@microsoft.com |
|
Swagger pipeline can not start as the pull request has merge conflicts. |
|
[Call for Action] To better understand Azure service dev/test scenario, and support Azure service developer better on Swagger and REST API related tests in early phase, please help to fill in with this survey https://aka.ms/SurveyForEarlyPhase. It will take 5 to 10 minutes. If you already complete survey, please neglect this comment. Thanks. |
|
Swagger pipeline can not start as the pull request has merge conflicts. |
Swagger Validation Report
|
| Rule | Message |
|---|---|
|
Discriminator value "Account" not found Url: stable/2021-10-01/common/EntityTypes.json#L233:15 ExampleUrl: 2021-10-01/examples/incidents/GetAllIncidentEntities.json#L17:21 |
️️✔️SemanticValidation succeeded [Detail] [Expand]
Validation passes for SemanticValidation.
️🔄Cross-Version Breaking Changes inProgress [Detail]
️⌛CredScan pending [Detail]
️🔄SDK Track2 Validation inProgress [Detail]
️️✔️PrettierCheck succeeded [Detail] [Expand]
Validation passes for PrettierCheck.
️🔄SpellCheck inProgress [Detail]
️️✔️Lint(RPaaS) succeeded [Detail] [Expand]
Validation passes for Lint(RPaaS).
Swagger Generation Artifacts
|
|
Hi @anat-gilenson, Your PR has some issues. Please fix the CI sequentially by following the order of
|
This was referenced Feb 22, 2022
|
Hello @dw511214992, note all PRs to this dev branch have been previously reviewed and approved. Please see the validation error fixes: ModelValidation:
LintDiff:
Cross-version breaking changes: |
jianyexi
added
the
WaitForARMFeedback
|
Hi, @anat-gilenson your PR are labelled with WaitForARMFeedback. A notification email will be sent out shortly afterwards to notify ARM review board(armapireview@microsoft.com). |
* Add x-ms-identifiers to all arrays * Add operations_list example * Add x-ms-identifier in all arrays * Run prettier * Fix spelling error
|
As all PRs to this dev branch have been previously reviewed and approved by ARM, we don't need Arm approval for this PR. |
dw511214992
removed
the
WaitForARMFeedback
|
/azp run |
|
Azure Pipelines successfully started running 1 pipeline(s). |
Swagger Validation Report
|
| Rule | Message |
|---|---|
| Guid used in model definition 'IncidentOwnerInfo' for property 'objectId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/IncidentTypes.json#L182 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1429 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: suppressionEnabled Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1444 |
The following errors/warnings exist before current PR submission:
Only 22 items are listed, please refer to log for more details.
| Rule | Message |
|---|---|
| Since operation 'ThreatIntelligenceIndicator_QueryIndicators' response has model definition 'x-ms-pageable', it should be of the form '_list'. Note: If you have already shipped an SDK on top of this spec, fixing this warning may introduce a breaking change. Location: Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#L296 |
|
| Consider using x-ms-client-flatten to provide a better end user experience Location: Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#L1011 |
|
| Based on the response model schema, operation 'SentinelOnboardingStates_List' might be pageable. Consider adding the x-ms-pageable extension. Location: Microsoft.SecurityInsights/stable/2021-10-01/OnboardingStates.json#L178 |
|
| Based on the response model schema, operation 'ThreatIntelligenceIndicatorMetrics_List' might be pageable. Consider adding the x-ms-pageable extension. Location: Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#L334 |
|
| The child tracked resource, 'relations' with immediate parent 'Incident', must have a list by immediate parent operation. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L791 |
|
| The child tracked resource, 'comments' with immediate parent 'Incident', must have a list by immediate parent operation. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L950 |
|
| The child tracked resource, 'watchlistItems' with immediate parent 'Watchlist', must have a list by immediate parent operation. Location: Microsoft.SecurityInsights/stable/2021-10-01/Watchlists.json#L597 |
|
| Guid used in model definition 'PlaybookActionProperties' for property 'tenantId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: Microsoft.SecurityInsights/stable/2021-10-01/AutomationRules.json#L851 |
|
| Guid used in model definition 'AccountEntityProperties' for property 'objectGuid'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/EntityTypes.json#L69 |
|
| Guid used in model definition 'IoTDeviceEntityProperties' for property 'iotSecurityAgentId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/EntityTypes.json#L799 |
|
| Guid used in model definition 'MailboxEntityProperties' for property 'externalDirectoryObjectId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/EntityTypes.json#L967 |
|
| Guid used in model definition 'MailMessageEntityProperties' for property 'networkMessageId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/EntityTypes.json#L1193 |
|
| Guid used in model definition 'SecurityGroupEntityProperties' for property 'objectGuid'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/EntityTypes.json#L2102 |
|
| Guid used in model definition 'SubmissionMailEntityProperties' for property 'networkMessageId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: stable/2021-10-01/common/EntityTypes.json#L2141 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L827 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1012 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: createIncident Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1300 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1317 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: reopenClosedIncident Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1321 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: isEnabled Location: Microsoft.SecurityInsights/stable/2021-10-01/AutomationRules.json#L762 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: isDomainJoined Location: stable/2021-10-01/common/EntityTypes.json#L59 |
|
| Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: isDomainJoined Location: stable/2021-10-01/common/EntityTypes.json#L608 |
️️✔️Avocado succeeded [Detail] [Expand]
Validation passes for Avocado.
️️✔️~[Staging] ApiReadinessCheck succeeded [Detail] [Expand]
️❌ModelValidation: 1 Errors, 0 Warnings failed [Detail]
| Rule | Message |
|---|---|
|
Discriminator value "Account" not found Url: stable/2021-10-01/common/EntityTypes.json#L233:15 ExampleUrl: 2021-10-01/examples/incidents/GetAllIncidentEntities.json#L17:21 |
️️✔️SemanticValidation succeeded [Detail] [Expand]
Validation passes for SemanticValidation.
️❌Cross-Version Breaking Changes: 96 Errors, 178 Warnings failed [Detail]
- Compared Swaggers (Based on Oad v0.9.3)
- current:stable/2021-10-01/AlertRules.json compared with base:stable/2020-01-01/AlertRules.json
- current:stable/2021-10-01/AlertRules.json compared with base:preview/2021-10-01-preview/AlertRules.json
- current:stable/2021-10-01/AutomationRules.json compared with base:preview/2021-10-01-preview/AutomationRules.json
- current:stable/2021-10-01/Bookmarks.json compared with base:stable/2020-01-01/Bookmarks.json
- current:stable/2021-10-01/Bookmarks.json compared with base:preview/2021-10-01-preview/Bookmarks.json
- current:stable/2021-10-01/DataConnectors.json compared with base:stable/2020-01-01/DataConnectors.json
- current:stable/2021-10-01/Incidents.json compared with base:stable/2021-04-01/Incidents.json
- current:stable/2021-10-01/Incidents.json compared with base:preview/2021-10-01-preview/Incidents.json
- current:stable/2021-10-01/OnboardingStates.json compared with base:preview/2021-10-01-preview/OnboardingStates.json
- current:stable/2021-10-01/ThreatIntelligence.json compared with base:stable/2021-04-01/ThreatIntelligence.json
- current:stable/2021-10-01/ThreatIntelligence.json compared with base:preview/2021-10-01-preview/ThreatIntelligence.json
- current:stable/2021-10-01/Watchlists.json compared with base:stable/2021-04-01/Watchlists.json
- current:stable/2021-10-01/Watchlists.json compared with base:preview/2021-10-01-preview/Watchlists.json
- current:2021-10-01/common/AlertTypes.json compared with base:2021-10-01-preview/common/AlertTypes.json
- current:2021-10-01/common/EntityTypes.json compared with base:2021-10-01-preview/common/EntityTypes.json
- current:2021-10-01/common/IncidentTypes.json compared with base:2021-10-01-preview/common/IncidentTypes.json
- current:stable/2021-10-01/operations.json compared with base:stable/2021-04-01/operations.json
- current:stable/2021-10-01/operations.json compared with base:preview/2021-10-01-preview/operations.json
Only 22 items are listed, please refer to log for more details.
| Rule | Message |
|---|---|
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/createIndicator' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L37:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/indicators' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L91:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/indicators/{name}' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L151:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/queryIndicators' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L300:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/metrics' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L351:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/indicators/{name}/appendTags' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L396:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/threatIntelligence/main/indicators/{name}/replaceTags' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#L444:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/watchlists' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/Watchlists.json#L37:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/watchlists/{watchlistAlias}' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/Watchlists.json#L88:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/watchlists/{watchlistAlias}/watchlistItems' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/Watchlists.json#L240:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/watchlists/{watchlistAlias}/watchlistItems/{watchlistItemId}' removed or restructured? Old: Microsoft.SecurityInsights/stable/2021-04-01/Watchlists.json#L294:5 |
|
The new version is missing a definition that was found in the old version. Was 'AlertRuleKind' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/AlertRules.json#L522:3 |
|
The new version is missing a definition that was found in the old version. Was 'AlertSeverity' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/AlertRules.json#L522:3 |
|
The new version is missing a definition that was found in the old version. Was 'AlertSeverity' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L790:3 Old: Microsoft.SecurityInsights/stable/2021-04-01/Incidents.json#L790:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'ResourceGroupName' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1711:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/AlertRules.json#L1385:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'SubscriptionId' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1711:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/AlertRules.json#L1385:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'ApiVersion' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1711:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/AlertRules.json#L1385:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'ResourceGroupName' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L335:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/Bookmarks.json#L387:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'SubscriptionId' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L335:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/Bookmarks.json#L387:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'ApiVersion' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L335:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/Bookmarks.json#L387:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'ResourceGroupName' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/DataConnectors.json#L719:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/DataConnectors.json#L719:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'SubscriptionId' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/DataConnectors.json#L719:3 Old: Microsoft.SecurityInsights/stable/2020-01-01/DataConnectors.json#L719:3 |
The following breaking changes are detected by comparison with latest preview version:
Only 22 items are listed, please refer to log for more details.
| Rule | Message |
|---|---|
| The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentIdentifier}/runPlaybook' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AutomationRules.json#L223:5 |
|
| The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/bookmarks/{bookmarkId}/relations' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L222:5 |
|
| The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/bookmarks/{bookmarkId}/expand' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L283:5 |
|
| The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/bookmarks/{bookmarkId}/relations/{relationName}' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L331:5 |
|
| The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.OperationalInsights/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/incidents/{incidentId}/createTeam' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Incidents.json#L234:5 |
|
| The new version is missing a definition that was found in the old version. Was 'MLBehaviorAnalyticsAlertRule' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'MLBehaviorAnalyticsAlertRuleProperties' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'MLBehaviorAnalyticsAlertRuleTemplate' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'ThreatIntelligenceAlertRule' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'ThreatIntelligenceAlertRuleProperties' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'ThreatIntelligenceAlertRuleTemplate' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'NrtAlertRuleProperties' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'NrtAlertRuleTemplate' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'NrtAlertRule' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AlertRules.json#L577:3 |
|
| The new version is missing a definition that was found in the old version. Was 'ManualTriggerRequestBody' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AutomationRules.json#L224:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/AutomationRules.json#L285:3 |
|
| The new version is missing a definition that was found in the old version. Was 'BookmarkExpandParameters' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
|
| The new version is missing a definition that was found in the old version. Was 'EntityMappingsList' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
|
| The new version is missing a definition that was found in the old version. Was 'EntityInnerKind' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
|
| The new version is missing a definition that was found in the old version. Was 'SubmissionMailEntityProperties' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
|
| The new version is missing a definition that was found in the old version. Was 'SecurityGroupEntityProperties' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
|
| The new version is missing a definition that was found in the old version. Was 'AlertSeverityEnum' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
|
| The new version is missing a definition that was found in the old version. Was 'SecurityAlertProperties' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/Bookmarks.json#L223:3 Old: Microsoft.SecurityInsights/preview/2021-10-01-preview/Bookmarks.json#L511:3 |
️️✔️CredScan succeeded [Detail] [Expand]
There is no credential detected.
️️✔️SDK Track2 Validation succeeded [Detail] [Expand]
Validation passes for SDKTrack2Validation
- The following tags are being changed in this PR
️️✔️PrettierCheck succeeded [Detail] [Expand]
Validation passes for PrettierCheck.
️️✔️SpellCheck succeeded [Detail] [Expand]
Validation passes for SpellCheck.
️️✔️Lint(RPaaS) succeeded [Detail] [Expand]
Validation passes for Lint(RPaaS).
dw511214992
approved these changes
Feb 28, 2022
This was referenced Feb 28, 2022
FredericHeem
pushed a commit
to grucloud/azure-rest-api-specs
that referenced
this pull request
Mar 7, 2022
) * Adds base for updating Microsoft.SecurityInsights from version stable/2021-04-01 to version 2021-10-01 * Updates readme * Updates API version in new specs and examples * Add AlertRules to microsoft.security insights 2021 10 01 (Azure#15657) * Adds base for updating Microsoft.SecurityInsight's AlertRules from version stable/2020-01-01 to version 2021-10-01 * Updates API version in AlertRules specs and examples * Use common types in AlertRules.json and remove redundant SecurityInsights * Add AlertRules to readme * Copy action examples for alert rules * Add type:object where missing * Align CloudError with rest of the resources in this version * Update readme Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Use newest common types to align with rest of Azure (Azure#16130) * Use newest common types to align with rest of Azure * Use ErrorResponse instead of CloudError in operations Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Add AlertRules Stable version to 2021-10-01 (Azure#16268) * Add AlertRules Stable version to 2021-10-01 * Fix missing alignment in common types * prettier fixes * move tactics and severity to common * fix common types file extension * more prettier fixes * Add template version field * prettier * added version to required fields * dummy change to trigger checks again * Add onboarding states to new stable version (Azure#16290) * Add onboarding states to new stable version * Update readme.md * cr fix - remove unused params * Add missing resources 2021 10 01 (Azure#16666) * Add missing resources and examples from 2020-01-01 * Update version in added resources and examples * Use existing common types * Remove unnesessary SecurityInsights.json * Update readme * Use sentinel common types in Incidents and Watchlist * Extract and common IncidentInfo and IncidentSeverity * Extract EntityTypes * Correct double allOf in EntityTypes * update readme * Remove eventGroupingSettings and entityMappings from GetAlertRuleTemplateById example. * rename operations.json Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Fix analytics templates model (Azure#16689) * add missing properties to scheduled template * prettier fixes * restore templates example after merge * fix templates example after merge and run prettier * Use CloudError instead of ErrorResponse to align with preview versions and our back-end. (Azure#17472) * Automation - Stable Version (Azure#17491) * First * readMe * cloudError * CloudError * schema * prettier * Fix * test * fix identifier * fix description * fix lable * fix lable * ownerInfo * Fix * types * conditionMaxLength Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Done (Azure#17728) Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Correct 2021 10 01 (Azure#17830) * Remove OperationalInsightsResourceProvider parameter in ThreatIntelligence * Remove OperationalInsightProviderParameter from Watchlist * Align stable operation names with preview * Add missing disciminator property in ThreatIntelligence * Done (Azure#17844) Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Align enum names with preview (Azure#17831) * Fix 2021 10 01 validation errors (Azure#17937) * Add x-ms-identifiers to all arrays * Add operations_list example * Add x-ms-identifier in all arrays * Run prettier * Fix spelling error * Add isDataAction to operation schema (Azure#18018) Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> Co-authored-by: laithhisham <49263932+laithhisham@users.noreply.github.com> Co-authored-by: royrein <37300636+royrein@users.noreply.github.com> Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> Co-authored-by: Arthur Ning <57385816+akning-ms@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
!!!Please note all commits to this develop branch have already been reviewed and approved by ARM, breaking change board and Swagger team.!!! No need for another ARM and breaking change board review.
MSFT employees can try out our new experience at OpenAPI Hub - one location for using our validation tools and finding your workflow.
Changelog
Add a changelog entry for this PR by answering the following questions:
Contribution checklist:
If any further question about AME onboarding or validation tools, please view the FAQ.
ARM API Review Checklist
Otherwise your PR may be subject to ARM review requirements. Complete the following:
Check this box if any of the following apply to the PR so that label "WaitForARMFeedback" will be added automatically to begin ARM API Review. Failure to comply may result in delays to the manifest.
-[ ] To review changes efficiently, ensure you are using OpenAPIHub to initialize the PR for adding a new version. More details, refer to the wiki.
Ensure you've reviewed following guidelines including ARM resource provider contract and REST guidelines. Estimated time (4 hours). This is required before you can request review from ARM API Review board.
If you are blocked on ARM review and want to get the PR merged with urgency, please get the ARM oncall for reviews (RP Manifest Approvers team under Azure Resource Manager service) from IcM and reach out to them.
Breaking Change Review Checklist
If any of the following scenarios apply to the PR, request approval from the Breaking Change Review Board as defined in the Breaking Change Policy.
Action: to initiate an evaluation of the breaking change, create a new intake using the template for breaking changes. Addition details on the process and office hours are on the Breaking change Wiki.
Please follow the link to find more details on PR review process.