From 80ed8ec5e6f6c13fb4cb1f41b697af9ed7473dc6 Mon Sep 17 00:00:00 2001
From: akozlovets098 <anastasiia.kozlovets@ext.runpanther.io>
Date: Thu, 14 Nov 2024 00:08:43 +0200
Subject: [PATCH] THREAT-411 ZIA AdminAuditRules - Password, Log, Backup

---
 packs/zscaler_zia.yml                                 | 1 +
 rules/zscaler_rules/zia/zia_log_streaming_disabled.py | 1 -
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/packs/zscaler_zia.yml b/packs/zscaler_zia.yml
index 1d7dc0402..d77e39d7e 100644
--- a/packs/zscaler_zia.yml
+++ b/packs/zscaler_zia.yml
@@ -11,6 +11,7 @@ PackDefinition:
     - ZIA.Golden.Restore.Point.Dropped
     - ZIA.Insecure.Password.Settings
     - ZIA.Logs.Downloaded
+    - ZIA.Log.Streaming.Disabled
     - ZIA.Password.Expiration
     - ZIA.Trust.Modification
     - panther_zscaler_helpers
diff --git a/rules/zscaler_rules/zia/zia_log_streaming_disabled.py b/rules/zscaler_rules/zia/zia_log_streaming_disabled.py
index 8208c2583..acde5c745 100644
--- a/rules/zscaler_rules/zia/zia_log_streaming_disabled.py
+++ b/rules/zscaler_rules/zia/zia_log_streaming_disabled.py
@@ -1,5 +1,4 @@
 from panther_zscaler_helpers import zia_alert_context, zia_success
-from pygments.lexer import default
 
 
 def rule(event):