Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

AlertRules- Add SentinelEntities and extend AlertDetailsOverride #20645

Conversation

necoh
Copy link
Contributor

@necoh necoh commented Sep 8, 2022

ARM API Information (Control Plane)

MSFT employees can try out our new experience at OpenAPI Hub - one location for using our validation tools and finding your workflow.

Azure 1st Party Service can try out the Shift Left experience to initiate API design review from ADO code repo. If you are interested, may request engineering support by filling in with the form https://aka.ms/ShiftLeftSupportForm.

Changelog

Add a changelog entry for this PR by answering the following questions:

  1. What's the purpose of the update?
    • new service onboarding
    • new API version
    • update existing version for new feature
    • update existing version to fix swagger quality issue in s360
    • Other, please clarify
  2. When are you targeting to deploy the new service/feature to public regions? Please provide the date or, if the date is not yet available, the month. August 2022.
  3. When do you expect to publish the swagger? Please provide date or, the the date is not yet available, the month.
  4. By default, Azure SDKs of all languages (.NET/Python/Java/JavaScript for both management-plane SDK and data-plane SDK, Go for management-plane SDK only ) MUST be refreshed with/after swagger of new version is published. If you prefer NOT to refresh any specific SDK language upon swagger updates in the current PR, please leave details with justification here.

Contribution checklist (MS Employees Only):

If any further question about AME onboarding or validation tools, please view the FAQ.

ARM API Review Checklist

Applicability: ⚠️

If your changes encompass only the following scenarios, you should SKIP this section, as these scenarios do not require ARM review.

  • Change to data plane APIs
  • Adding new properties
  • All removals

Otherwise your PR may be subject to ARM review requirements. Complete the following:

  • Check this box if any of the following apply to the PR so that the label "ARMReview" and "WaitForARMFeedback" will be added by bot to kick off ARM API Review. Missing to check this box in the following scenario may result in delays to the ARM manifest review and deployment.

    • Adding a new service
    • Adding new API(s)
    • Adding a new API version
      -[ ] To review changes efficiently, ensure you copy the existing version into the new directory structure for first commit and then push new changes, including version updates, in separate commits. You can use OpenAPIHub to initialize the PR for adding a new version. For more details refer to the wiki.
  • Ensure you've reviewed following guidelines including ARM resource provider contract and REST guidelines. Estimated time (4 hours). This is required before you can request review from ARM API Review board.

  • If you are blocked on ARM review and want to get the PR merged with urgency, please get the ARM oncall for reviews (RP Manifest Approvers team under Azure Resource Manager service) from IcM and reach out to them.

Breaking Change Review Checklist

If you have any breaking changes as defined in the Breaking Change Policy, request approval from the Breaking Change Review Board.

Action: to initiate an evaluation of the breaking change, create a new intake using the template for breaking changes. Additional details on the process and office hours are on the Breaking Change Wiki.

NOTE: To update API(s) in public preview for over 1 year (refer to Retirement of Previews)

Please follow the link to find more details on PR review process.

@openapi-workflow-bot
Copy link

Hi, @necoh Thanks for your PR. I am workflow bot for review process. Here are some small tips.

  • Please ensure to do self-check against checklists in first PR comment.
  • PR assignee is the person auto-assigned and responsible for your current PR reviewing and merging.
  • For specs comparison cross API versions, Use API Specs Comparison Report Generator
  • If there is CI failure(s), to fix CI error(s) is mandatory for PR merging; or you need to provide justification in PR comment for explanation. How to fix?

  • Any feedback about review process or workflow bot, pls contact swagger and tools team. vscswagger@microsoft.com

    @openapi-pipeline-app
    Copy link

    openapi-pipeline-app bot commented Sep 8, 2022

    Swagger Validation Report

    ️️✔️BreakingChange succeeded [Detail] [Expand]
    There are no breaking changes.
    ️❌Breaking Change(Cross-Version): 1 Errors, 7 Warnings failed [Detail]
    compared swaggers (via Oad v0.9.7)] new version base version
    AlertRules.json 2022-10-01-preview(129cef2) 2022-08-01(main)
    AlertRules.json 2022-10-01-preview(129cef2) 2022-09-01-preview(main)

    The following breaking changes are detected by comparison with the latest stable version:

    Rule Message
    1029 - ReadonlyPropertyChanged The read only property has changed from 'false' to 'true'.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1044:9
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L851:9
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L2372:11
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L533:11
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L326:13
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L317:13
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L375:13
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L366:13
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L381:13
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L372:13
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L2331:5
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L579:5
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1552:9
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L1052:9
    ⚠️ 1032 - DifferentAllOf The new version has a different 'allOf' property than the previous one.
    New: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1569:5
    Old: Microsoft.SecurityInsights/stable/2022-08-01/AlertRules.json#L1069:5
    ️⚠️LintDiff: 0 Warnings warning [Detail]
    compared tags (via openapi-validator v1.13.0) new version base version
    package-preview-2022-10 package-preview-2022-10(129cef2) package-preview-2022-10(release-securityinsights-Microsoft.SecurityInsights-2022-10-01-preview)

    The following errors/warnings exist before current PR submission:

    Rule Message
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L898
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1005
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1062
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1088
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: isSupported
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1117
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1140
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: isSupported
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1313
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1365
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1526
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1630
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: suppressionEnabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1645
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1720
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: suppressionEnabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L1735
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: createIncident
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L2177
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: enabled
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L2194
    ⚠️ R3018 - EnumInsteadOfBoolean Booleans are not descriptive and make them hard to use. Consider using string enums with allowed set of values defined. Property: reopenClosedIncident
    Location: Microsoft.SecurityInsights/preview/2022-10-01-preview/AlertRules.json#L2198
    ️️✔️Avocado succeeded [Detail] [Expand]
    Validation passes for Avocado.
    ️️✔️ModelValidation succeeded [Detail] [Expand]
    Validation passes for ModelValidation.
    ️️✔️SemanticValidation succeeded [Detail] [Expand]
    Validation passes for SemanticValidation.
    ️⚠️SDK Track2 Validation: 3 Warnings warning [Detail]
    • The following tags are being changed in this PR
      • "https://github.com/Azure/azure-rest-api-specs/blob/129cef2ceda8a529468faac48e2070c1ae5b3fee/specification/securityinsights/resource-manager/readme.md#tag-package-preview-2022-10">securityinsights/resource-manager/readme.md#package-preview-2022-10
    The following errors/warnings are introduced by current PR:
    Rule Message
    ⚠️ Modeler/MissingType "readme":"securityinsights/resource-manager/readme.md",
    "tag":"package-preview-2022-10",
    "details":"The schema 'components·1qaufw0·schemas·threatintelligenceindicatorproperties·properties·extensions·additionalproperties' has no type or format information whatsoever. Location:\n file:///mnt/vss/_work/1/azure-rest-api-specs/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2022-10-01-preview/ThreatIntelligence.json#/components/schemas/components·1qaufw0·schemas·threatintelligenceindicatorproperties·properties·extensions·additionalproperties"
    ⚠️ Modeler/MissingType "readme":"securityinsights/resource-manager/readme.md",
    "tag":"package-preview-2022-10",
    "details":"The schema 'components·2sbdb2·schemas·watchlistitemproperties·properties·itemskeyvalue·additionalproperties' has no type or format information whatsoever. Location:\n file:///mnt/vss/_work/1/azure-rest-api-specs/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2022-10-01-preview/Watchlists.json#/components/schemas/components·2sbdb2·schemas·watchlistitemproperties·properties·itemskeyvalue·additionalproperties"
    ⚠️ Modeler/MissingType "readme":"securityinsights/resource-manager/readme.md",
    "tag":"package-preview-2022-10",
    "details":"The schema 'components·84fvid·schemas·watchlistitemproperties·properties·entitymapping·additionalproperties' has no type or format information whatsoever. Location:\n file:///mnt/vss/_work/1/azure-rest-api-specs/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/preview/2022-10-01-preview/Watchlists.json#/components/schemas/components·84fvid·schemas·watchlistitemproperties·properties·entitymapping·additionalproperties"


    The following errors/warnings exist before current PR submission:

    Rule Message
    ⚠️ UnkownSecurityScheme "readme":"securityinsights/resource-manager/readme.md",
    "tag":"package-preview-2022-10",
    "details":"Security scheme azure_auth is unknown and will not be processed. Only supported types are AADToken,
    AzureKey,
    Anonymous"
    ️️✔️PrettierCheck succeeded [Detail] [Expand]
    Validation passes for PrettierCheck.
    ️️✔️SpellCheck succeeded [Detail] [Expand]
    Validation passes for SpellCheck.
    ️️✔️CadlValidation succeeded [Detail] [Expand]
    Validation passes for CadlValidation.
    Posted by Swagger Pipeline | How to fix these errors?

    @openapi-pipeline-app
    Copy link

    openapi-pipeline-app bot commented Sep 8, 2022

    Swagger Generation Artifacts

    ️️✔️ApiDocPreview succeeded [Detail] [Expand]
     Please click here to preview with your @microsoft account. 
    ️⚠️SDK Breaking Change Tracking warning [Detail]

    Breaking Changes Tracking

    ⚠️azure-sdk-for-python-track2 - track2_azure-mgmt-securityinsight - 1.0.0
    +	Parameter alerts of model AlertsDataTypeOfDataConnector is now required
    +	Parameter alerts of model MCASDataConnectorDataTypes is now required
    +	Parameter exchange of model OfficeDataConnectorDataTypes is now required
    +	Parameter indicators of model TIDataConnectorDataTypes is now required
    +	Parameter logs of model AwsCloudTrailDataConnectorDataTypes is now required
    +	Parameter share_point of model OfficeDataConnectorDataTypes is now required
    +	Parameter state of model AwsCloudTrailDataConnectorDataTypesLogs is now required
    +	Parameter state of model DataConnectorDataTypeCommon is now required
    +	Parameter state of model OfficeDataConnectorDataTypesExchange is now required
    +	Parameter state of model OfficeDataConnectorDataTypesSharePoint is now required
    +	Parameter state of model OfficeDataConnectorDataTypesTeams is now required
    +	Parameter state of model TIDataConnectorDataTypesIndicators is now required
    +	Parameter teams of model OfficeDataConnectorDataTypes is now required
    +	Parameter tenant_id of model DataConnectorTenantId is now required
    ️❌ azure-sdk-for-net failed [Detail]
    • Failed [Logs] Generate from 37ca17332f96ba259877d4b324422da462083b09. SDK Automation 14.0.0
      warn	Skip initScript due to not configured
      command	sudo apt-get install -y dotnet-sdk-6.0
      command	autorest --version=2.0.4421 --csharp --reflect-api-versions --license-header=MICROSOFT_MIT_NO_VERSION --use=@microsoft.azure/autorest.csharp@2.3.82 --csharp-sdks-folder=/mnt/vss/_work/1/s/azure-sdk-for-net/sdk ../azure-rest-api-specs/specification/securityinsights/resource-manager/readme.md
      cmderr	[Autorest] realpath(): Permission denied
      cmderr	[Autorest] realpath(): Permission denied
      cmderr	[Autorest] realpath(): Permission denied
      cmderr	[Autorest] realpath(): Permission denied
      cmderr	[Autorest] realpath(): Permission denied
      cmderr	[Autorest] realpath(): Permission denied
      cmderr	[Autorest] No usable version of the libssl was found
      cmderr	[Autorest] FATAL: csharp/simplifier - FAILED
      cmderr	[Autorest] FATAL: Error: [Exception] AutoRest extension '@microsoft.azure/autorest.csharp' terminated.
      cmderr	[Autorest] Process() cancelled due to exception : [Exception] AutoRest extension '@microsoft.azure/autorest.csharp' terminated.
      error	Script return with result [failed] code [1] signal [null] cwd [azure-sdk-for-net]: autorest
      warn	Skip package processing as generation is failed
    ️⚠️ azure-sdk-for-python-track2 warning [Detail]
    • ⚠️Warning [Logs] Generate from 37ca17332f96ba259877d4b324422da462083b09. SDK Automation 14.0.0
      command	sh scripts/automation_init.sh ../azure-sdk-for-python_tmp/initInput.json ../azure-sdk-for-python_tmp/initOutput.json
      cmderr	[automation_init.sh] WARNING: Skipping azure-nspkg as it is not installed.
      command	sh scripts/automation_generate.sh ../azure-sdk-for-python_tmp/generateInput.json ../azure-sdk-for-python_tmp/generateOutput.json
    • ️✔️track2_azure-mgmt-securityinsight [View full logs]  [Preview SDK Changes] Breaking Change Detected
      info	[Changelog] ### Features Added
      info	[Changelog]
      info	[Changelog]   - Added operation DataConnectorsOperations.connect
      info	[Changelog]   - Added operation DataConnectorsOperations.disconnect
      info	[Changelog]   - Added operation IncidentsOperations.create_team
      info	[Changelog]   - Added operation IncidentsOperations.run_playbook
      info	[Changelog]   - Added operation group BookmarkOperations
      info	[Changelog]   - Added operation group BookmarkRelationsOperations
      info	[Changelog]   - Added operation group DataConnectorsCheckRequirementsOperations
      info	[Changelog]   - Added operation group DomainWhoisOperations
      info	[Changelog]   - Added operation group EntitiesGetTimelineOperations
      info	[Changelog]   - Added operation group EntitiesOperations
      info	[Changelog]   - Added operation group EntitiesRelationsOperations
      info	[Changelog]   - Added operation group EntityQueriesOperations
      info	[Changelog]   - Added operation group EntityQueryTemplatesOperations
      info	[Changelog]   - Added operation group EntityRelationsOperations
      info	[Changelog]   - Added operation group FileImportsOperations
      info	[Changelog]   - Added operation group IPGeodataOperations
      info	[Changelog]   - Added operation group MetadataOperations
      info	[Changelog]   - Added operation group OfficeConsentsOperations
      info	[Changelog]   - Added operation group ProductSettingsOperations
      info	[Changelog]   - Added operation group SecurityMLAnalyticsSettingsOperations
      info	[Changelog]   - Added operation group SourceControlOperations
      info	[Changelog]   - Added operation group SourceControlsOperations
      info	[Changelog]   - Model AlertDetailsOverride has a new parameter alert_dynamic_properties
      info	[Changelog]   - Model Bookmark has a new parameter entity_mappings
      info	[Changelog]   - Model Bookmark has a new parameter tactics
      info	[Changelog]   - Model Bookmark has a new parameter techniques
      info	[Changelog]   - Model FusionAlertRule has a new parameter scenario_exclusion_patterns
      info	[Changelog]   - Model FusionAlertRule has a new parameter source_settings
      info	[Changelog]   - Model FusionAlertRule has a new parameter techniques
      info	[Changelog]   - Model FusionAlertRuleTemplate has a new parameter source_settings
      info	[Changelog]   - Model FusionAlertRuleTemplate has a new parameter techniques
      info	[Changelog]   - Model Incident has a new parameter provider_incident_id
      info	[Changelog]   - Model Incident has a new parameter provider_name
      info	[Changelog]   - Model Incident has a new parameter team_information
      info	[Changelog]   - Model IncidentAdditionalData has a new parameter provider_incident_url
      info	[Changelog]   - Model IncidentAdditionalData has a new parameter techniques
      info	[Changelog]   - Model IncidentOwnerInfo has a new parameter owner_type
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter device_sub_type
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter importance
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter is_authorized
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter is_programming
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter is_scanner
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter nic_entity_ids
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter owners
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter purdue_layer
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter sensor
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter site
      info	[Changelog]   - Model IoTDeviceEntity has a new parameter zone
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter device_sub_type
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter importance
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter is_authorized
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter is_programming
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter is_scanner
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter nic_entity_ids
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter owners
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter purdue_layer
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter sensor
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter site
      info	[Changelog]   - Model IoTDeviceEntityProperties has a new parameter zone
      info	[Changelog]   - Model ScheduledAlertRule has a new parameter sentinel_entities_mappings
      info	[Changelog]   - Model ScheduledAlertRule has a new parameter techniques
      info	[Changelog]   - Model ScheduledAlertRuleCommonProperties has a new parameter sentinel_entities_mappings
      info	[Changelog]   - Model ScheduledAlertRuleProperties has a new parameter sentinel_entities_mappings
      info	[Changelog]   - Model ScheduledAlertRuleProperties has a new parameter techniques
      info	[Changelog]   - Model ScheduledAlertRuleTemplate has a new parameter sentinel_entities_mappings
      info	[Changelog]   - Model ScheduledAlertRuleTemplate has a new parameter techniques
      info	[Changelog]   - Model Watchlist has a new parameter source_type
      info	[Changelog]
      info	[Changelog] ### Breaking Changes
      info	[Changelog]
      info	[Changelog]   - Parameter alerts of model AlertsDataTypeOfDataConnector is now required
      info	[Changelog]   - Parameter alerts of model MCASDataConnectorDataTypes is now required
      info	[Changelog]   - Parameter exchange of model OfficeDataConnectorDataTypes is now required
      info	[Changelog]   - Parameter indicators of model TIDataConnectorDataTypes is now required
      info	[Changelog]   - Parameter logs of model AwsCloudTrailDataConnectorDataTypes is now required
      info	[Changelog]   - Parameter share_point of model OfficeDataConnectorDataTypes is now required
      info	[Changelog]   - Parameter state of model AwsCloudTrailDataConnectorDataTypesLogs is now required
      info	[Changelog]   - Parameter state of model DataConnectorDataTypeCommon is now required
      info	[Changelog]   - Parameter state of model OfficeDataConnectorDataTypesExchange is now required
      info	[Changelog]   - Parameter state of model OfficeDataConnectorDataTypesSharePoint is now required
      info	[Changelog]   - Parameter state of model OfficeDataConnectorDataTypesTeams is now required
      info	[Changelog]   - Parameter state of model TIDataConnectorDataTypesIndicators is now required
      info	[Changelog]   - Parameter teams of model OfficeDataConnectorDataTypes is now required
      info	[Changelog]   - Parameter tenant_id of model DataConnectorTenantId is now required
    ️️✔️ azure-sdk-for-js succeeded [Detail] [Expand]
    • ️✔️Succeeded [Logs] Generate from 37ca17332f96ba259877d4b324422da462083b09. SDK Automation 14.0.0
      command	sh .scripts/automation_init.sh ../azure-sdk-for-js_tmp/initInput.json ../azure-sdk-for-js_tmp/initOutput.json
      warn	File azure-sdk-for-js_tmp/initOutput.json not found to read
      command	sh .scripts/automation_generate.sh ../azure-sdk-for-js_tmp/generateInput.json ../azure-sdk-for-js_tmp/generateOutput.json
    • ️✔️@azure/arm-securityinsight [View full logs]  [Preview SDK Changes]
      info	[Changelog] **Features**
      info	[Changelog]
      info	[Changelog]   - Added operation group FileImports
      info	[Changelog]   - Added Interface AlertPropertyMapping
      info	[Changelog]   - Added Interface AutomationRuleBooleanCondition
      info	[Changelog]   - Added Interface AutomationRulePropertyArrayValuesCondition
      info	[Changelog]   - Added Interface BooleanConditionProperties
      info	[Changelog]   - Added Interface FileImport
      info	[Changelog]   - Added Interface FileImportList
      info	[Changelog]   - Added Interface FileImportsCreateOptionalParams
      info	[Changelog]   - Added Interface FileImportsDeleteOptionalParams
      info	[Changelog]   - Added Interface FileImportsGetOptionalParams
      info	[Changelog]   - Added Interface FileImportsListNextOptionalParams
      info	[Changelog]   - Added Interface FileImportsListOptionalParams
      info	[Changelog]   - Added Interface FileMetadata
      info	[Changelog]   - Added Interface PropertyArrayConditionProperties
      info	[Changelog]   - Added Interface SentinelEntityMapping
      info	[Changelog]   - Added Interface ValidationError
      info	[Changelog]   - Added Type Alias AlertProperty
      info	[Changelog]   - Added Type Alias AutomationRuleBooleanConditionSupportedOperator
      info	[Changelog]   - Added Type Alias AutomationRulePropertyArrayConditionSupportedArrayConditionType
      info	[Changelog]   - Added Type Alias AutomationRulePropertyArrayConditionSupportedArrayType
      info	[Changelog]   - Added Type Alias DeleteStatus
      info	[Changelog]   - Added Type Alias FileFormat
      info	[Changelog]   - Added Type Alias FileImportContentType
      info	[Changelog]   - Added Type Alias FileImportsCreateResponse
      info	[Changelog]   - Added Type Alias FileImportsDeleteResponse
      info	[Changelog]   - Added Type Alias FileImportsGetResponse
      info	[Changelog]   - Added Type Alias FileImportsListNextResponse
      info	[Changelog]   - Added Type Alias FileImportsListResponse
      info	[Changelog]   - Added Type Alias FileImportState
      info	[Changelog]   - Added Type Alias IngestionMode
      info	[Changelog]   - Interface AlertDetailsOverride has a new optional parameter alertDynamicProperties
      info	[Changelog]   - Interface NrtAlertRule has a new optional parameter eventGroupingSettings
      info	[Changelog]   - Interface NrtAlertRule has a new optional parameter sentinelEntitiesMappings
      info	[Changelog]   - Interface NrtAlertRuleTemplate has a new optional parameter eventGroupingSettings
      info	[Changelog]   - Interface NrtAlertRuleTemplate has a new optional parameter sentinelEntitiesMappings
      info	[Changelog]   - Interface QueryBasedAlertRuleTemplateProperties has a new optional parameter eventGroupingSettings
      info	[Changelog]   - Interface QueryBasedAlertRuleTemplateProperties has a new optional parameter sentinelEntitiesMappings
      info	[Changelog]   - Interface ScheduledAlertRule has a new optional parameter sentinelEntitiesMappings
      info	[Changelog]   - Interface ScheduledAlertRuleCommonProperties has a new optional parameter sentinelEntitiesMappings
      info	[Changelog]   - Interface ScheduledAlertRuleTemplate has a new optional parameter sentinelEntitiesMappings
      info	[Changelog]   - Class SecurityInsights has a new parameter fileImports
      info	[Changelog]   - Added Enum KnownAlertProperty
      info	[Changelog]   - Added Enum KnownAutomationRuleBooleanConditionSupportedOperator
      info	[Changelog]   - Added Enum KnownAutomationRulePropertyArrayConditionSupportedArrayConditionType
      info	[Changelog]   - Added Enum KnownAutomationRulePropertyArrayConditionSupportedArrayType
      info	[Changelog]   - Added Enum KnownDeleteStatus
      info	[Changelog]   - Added Enum KnownFileFormat
      info	[Changelog]   - Added Enum KnownFileImportContentType
      info	[Changelog]   - Added Enum KnownFileImportState
      info	[Changelog]   - Added Enum KnownIngestionMode
      info	[Changelog]   - Enum KnownAutomationRulePropertyConditionSupportedProperty has a new value IncidentCustomDetailsKey
      info	[Changelog]   - Enum KnownAutomationRulePropertyConditionSupportedProperty has a new value IncidentCustomDetailsValue
      info	[Changelog]   - Enum KnownAutomationRulePropertyConditionSupportedProperty has a new value IncidentUpdatedBySource
      info	[Changelog]   - Enum KnownConditionType has a new value Boolean
      info	[Changelog]   - Enum KnownConditionType has a new value PropertyArray
      error	breakingChangeTracking is enabled, but version or changelogItem is not found in output.
    ️️✔️ azure-sdk-for-java succeeded [Detail] [Expand]
    ️⚠️ azure-resource-manager-schemas warning [Detail]
    • ⚠️Warning [Logs] Generate from 37ca17332f96ba259877d4b324422da462083b09. Schema Automation 14.0.0
      command	.sdkauto/initScript.sh ../azure-resource-manager-schemas_tmp/initInput.json ../azure-resource-manager-schemas_tmp/initOutput.json
      cmderr	[initScript.sh] WARN old lockfile
      cmderr	[initScript.sh] npm WARN old lockfile The package-lock.json file was created with an old version of npm,
      cmderr	[initScript.sh] npm WARN old lockfile so supplemental metadata must be fetched from the registry.
      cmderr	[initScript.sh] npm WARN old lockfile
      cmderr	[initScript.sh] npm WARN old lockfile This is a one-time fix-up, please be patient...
      cmderr	[initScript.sh] npm WARN old lockfile
      warn	File azure-resource-manager-schemas_tmp/initOutput.json not found to read
      command	.sdkauto/generateScript.sh ../azure-resource-manager-schemas_tmp/generateInput.json ../azure-resource-manager-schemas_tmp/generateOutput.json
    • ️✔️securityinsights [View full logs]  [Preview Schema Changes]
    ️❌ azure-powershell failed [Detail]
    • Failed [Logs] Generate from 37ca17332f96ba259877d4b324422da462083b09. SDK Automation 14.0.0
      command	sh ./tools/SwaggerCI/init.sh ../azure-powershell_tmp/initInput.json ../azure-powershell_tmp/initOutput.json
      command	pwsh ./tools/SwaggerCI/psci.ps1 ../azure-powershell_tmp/generateInput.json ../azure-powershell_tmp/generateOutput.json
    • Az.securityinsights [View full logs]  [Preview SDK Changes]
    Posted by Swagger Pipeline | How to fix these errors?

    @openapi-pipeline-app
    Copy link

    openapi-pipeline-app bot commented Sep 8, 2022

    Generated ApiView

    Language Package Name ApiView Link
    Python track2_azure-mgmt-securityinsight Create ApiView failed. Please ensure your github account in Azure/Microsoft is public and add a comment "/azp run" to re-trigger the CI.
    Java azure-resourcemanager-securityinsights Create ApiView failed. Please ensure your github account in Azure/Microsoft is public and add a comment "/azp run" to re-trigger the CI.
    JavaScript @azure/arm-securityinsight Create ApiView failed. Please ensure your github account in Azure/Microsoft is public and add a comment "/azp run" to re-trigger the CI.

    @openapi-workflow-bot openapi-workflow-bot bot added ARMReview WaitForARMFeedback <valid label in PR review process> add this label when ARM review is required labels Sep 8, 2022
    @openapi-workflow-bot
    Copy link

    Hi, @necoh your PR are labelled with WaitForARMFeedback. A notification email will be sent out shortly afterwards to notify ARM review board(armapireview@microsoft.com).

    @laithhisham
    Copy link
    Contributor

    @necoh
    Notice that we have a cross version breaking change. Looks like the techniques are readonly in the preview version and not readonly in the stable version. It is not related to the change here, but worth checking

    @laithhisham
    Copy link
    Contributor

    @necoh Notice that we have a cross version breaking change. Looks like the techniques are readonly in the preview version and not readonly in the stable version. It is not related to the change here, but worth checking

    @necoh
    This is the issue Ziv sent about earlier today.
    It should be resolved with this PR: #20668

    @dw511214992 dw511214992 merged commit bd1f6a3 into Azure:release-securityinsights-Microsoft.SecurityInsights-2022-10-01-preview Sep 13, 2022
    dw511214992 pushed a commit that referenced this pull request Sep 28, 2022
    #20858)
    
    * Adds base for updating Microsoft.SecurityInsights from version preview/2022-09-01-preview to version 2022-10-01-preview
    
    * Updates readme
    
    * Updates API version in new specs and examples
    
    * fix (#20640)
    
    * AlertRules- Add SentinelEntities and extend AlertDetailsOverride (#20645)
    
    * Add SentinelEntities and extend AlertDetailsOverride
    
    * Add SentinelEntities and extend AlertDetailsOverride
    
    * Entities 2022 10 01 preview added security alert timeline item intent and techniques (#20665)
    
    * Added SecurityAlertTimelineItem Intent and techiques
    
    * changed intent to enum
    
    * reran prettier
    
    Co-authored-by: Natanel Mizrahi <natanel.mizrahi@gmail.com>
    
    Co-authored-by: dosegal <51155368+dosegal@users.noreply.github.com>
    Co-authored-by: loriatarms <105870291+loriatarms@users.noreply.github.com>
    Co-authored-by: necoh <53861229+necoh@users.noreply.github.com>
    Co-authored-by: nmizrahi6 <100570740+nmizrahi6@users.noreply.github.com>
    Co-authored-by: Natanel Mizrahi <natanel.mizrahi@gmail.com>
    Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
    Labels
    ARMReview ARMSignedOff <valid label in PR review process>add this label when ARM approve updates after review resource-manager
    Projects
    None yet
    Development

    Successfully merging this pull request may close these issues.

    5 participants