Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

101 requesting automatic termination of search after x time or y results #118

Merged
merged 14 commits into from
Jul 10, 2023
Merged

101 requesting automatic termination of search after x time or y results #118

merged 14 commits into from
Jul 10, 2023

Conversation

TreWilkinsRC
Copy link
Contributor

@TreWilkinsRC TreWilkinsRC commented Jul 9, 2023
edited
Loading

Changes

Created one option:
--limit allows user to specify number of results returned

Note

After conducting tests with the --limit option, it was determined that there is no need to implement an additional timeout option after x amount of time. Setting a limit should effectively achieve the desired outcome. Open to making adjustments based on specific requirements or needs.

Limits:

Cortex XDR: Default: 1000, Max: Default
Microsoft Defender for Endpoint: Default: 100000, Max: 100000
SentinelOne (PowerQuery): Default/Max: 1000
SentinelOne (Deep Visibility): Default/Max: 20000
VMware Carbon Black EDR: Default/Max: None
VMware Carbon Black Cloud Enterprise EDR: Default/Max: None

Note: Exceeding the maximum limits will automatically set the limit to its maximum value, where applicable.

closes #101

@TreWilkinsRC TreWilkinsRC linked an issue Jul 9, 2023 that may be closed by this pull request
Requesting automatic termination of search after x time or y results #101
Closed
8 tasks
rc-csmith
rc-csmith suggested changes Jul 10, 2023
View reviewed changes
Copy link
Contributor

@rc-csmith rc-csmith left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I agree the limit param meets the requirements for the FR - I don't see anything significant to be gained by implementing a timeout option. The tests also need to be updated to provide coverage for this new limit param

products/microsoft_defender_for_endpoints.py Outdated Show resolved Hide resolved
products/microsoft_defender_for_endpoints.py Outdated Show resolved Hide resolved
products/microsoft_defender_for_endpoints.py Outdated Show resolved Hide resolved
products/microsoft_defender_for_endpoints.py Outdated Show resolved Hide resolved
products/sentinel_one.py Show resolved Hide resolved
rc-csmith
rc-csmith approved these changes Jul 10, 2023
View reviewed changes
Copy link
Contributor

@rc-csmith rc-csmith left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added tests for coverage of the new feature. This looks ready to merge!

@TreWilkinsRC TreWilkinsRC merged commit 0fcb4dc into master Jul 10, 2023
@TreWilkinsRC TreWilkinsRC deleted the 101-requesting-automatic-termination-of-search-after-x-time-or-y-results branch July 10, 2023 20:57
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@rc-csmith rc-csmith rc-csmith approved these changes

@rc-abodkins rc-abodkins Awaiting requested review from rc-abodkins

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Requesting automatic termination of search after x time or y results
2 participants
@TreWilkinsRC @rc-csmith