Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Convert Snowflake Scheduled Rules into Streaming Rules #1387

Merged
merged 7 commits into from
Nov 4, 2024

Conversation

ben-githubs
Copy link
Contributor

Background

Converting Snowflake scheduled rules into streaming (AKA realtime) rules to make use of the new Snowflake log integration

Changes

  • Introduced multiple new rules

Testing

  • All rules have unit tests build from events gathered from Pre-Alpha test instance

@ben-githubs ben-githubs requested a review from a team as a code owner October 11, 2024 19:55
@arielkr256 arielkr256 added enhancement New feature or request rules Real-time log data detections labels Oct 15, 2024
Copy link

😱
looks like some things could be wrong with the packs

[INFO][root]: ignoring file dependabot.yml

@arielkr256
Copy link
Contributor

@ben-githubs these look great! Needs a pack

@arielkr256 arielkr256 enabled auto-merge (squash) October 29, 2024 19:55
@arielkr256 arielkr256 disabled auto-merge October 29, 2024 19:59
@arielkr256
Copy link
Contributor

@ben-githubs looks like Validate caught some duplicate filenames from the original scheduled queries.

@arielkr256 arielkr256 added the packs New Packs and Expansion of Existing Packs label Oct 29, 2024
@arielkr256 arielkr256 enabled auto-merge (squash) November 4, 2024 17:17
@arielkr256 arielkr256 merged commit 9c91c75 into develop Nov 4, 2024
8 checks passed
@arielkr256 arielkr256 deleted the THREAT-367/snowflake-streaming-rules branch November 4, 2024 17:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
enhancement New feature or request packs New Packs and Expansion of Existing Packs rules Real-time log data detections
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants