Skip to content

Trend Micro Vision One - Documentation update#39544

Merged
RotemAmit merged 5 commits intomasterfrom
doc_update_trend_micro
Apr 14, 2025
Merged

Trend Micro Vision One - Documentation update#39544
RotemAmit merged 5 commits intomasterfrom
doc_update_trend_micro

Conversation

@RotemAmit
Copy link
Copy Markdown
Contributor

@RotemAmit RotemAmit commented Apr 10, 2025

Contributing to Cortex XSOAR Content

Make sure to register your contribution by filling the contribution registration form

The Pull Request will be reviewed only after the contribution registration form is filled.

Status

  • In Progress
  • Ready
  • In Hold - (Reason for hold)

Related Issues

fixes: link to the issue

Description

Updated the README to match the YML for the argument from_time.

Must have

  • Tests
  • Documentation

@RotemAmit RotemAmit requested a review from eyalpalo April 10, 2025 09:08
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 10, 2025

Your contributed TrendMicroVisionOne pack has been modified on files:

Packs/TrendMicroVisionOne/Integrations/TrendMicroVisionOneEventCollector/README.md
Please review the changes here

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 10, 2025
edited
Loading

Coverage

Coverage Report
FileStmtsMissCoverMissing
Packs/TrendMicroVisionOne/Integrations/TrendMicroVisionOneEventCollector
   TrendMicroVisionOneEventCollector.py3481795%561–565, 571, 641–645, 674, 818, 1093, 1135, 1138–1139
TOTAL3481795% 

Tests Skipped Failures Errors Time
21 0 💤 0 ❌ 0 🔥 -71696787.331s ⏱️

@content-bot
Copy link
Copy Markdown
Contributor

content-bot commented Apr 10, 2025

Validate summary

Verdict: PR can be force merged from validate perspective? ✅

@RotemAmit RotemAmit merged commit bcb871e into master Apr 14, 2025
20 checks passed
@RotemAmit RotemAmit deleted the doc_update_trend_micro branch April 14, 2025 06:38
barryyosi-panw pushed a commit that referenced this pull request Apr 28, 2025
@RotemAmit @barryyosi-panw
Trend Micro Vision One - Documentation update (#39544)
3e1eab5 
* README update

* example and docker image update

* rn

* updated the display name

* rn
barryyosi-panw added a commit that referenced this pull request Jul 9, 2025
@barryyosi-panw @tomer-pan
@eepstain @content-bot @nicoloereni @inbalapt1 @RosenbergYehuda @jlevypaloalto @RotemAmit @yaakovpraisler @ali-sawyer @MosheEichler @ShirleyDenkberg @sdaniel6 @kamalq97 @YuvHayun @MLainer1 @eyalpalo @ilaredo @GalNakash-RecoLabs @almog2296 @hyaffe839 @AviShakuri @DeanArbel @merit-maita @efelmandar @abaansalpanw @michal-dagan @TerminalFin @pdragoi @sumit-badsara @kobymeir @Kchekh @mmhw @moishce @OmriItzhak @xsoar-bot @rurhrlaub @itssapir @mohlcyber @ilappe @noydavidi @Ni-Knight @rshunim @jbabazadeh @ellopez777 @sapirshuker @lehrbaumm @karinafishman @umishkin @ArikDay @yasta5 @spearmin10 @lironcohen272 @thefrieddan1 @Pinger77 @dantavori
Byosi/aws unified integration (#39632)
c5f08ae 
* Suspicious user access to multiple resources via sso trigger (#39514)

* Add trigger

* RN

* Add trigger

* RN

* RN

* after review

* RN

* MSFT O365 Email Enh. (#39503)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Nozomi fix potential incidents loss when max page number reached (#39331) (#39517)

* * fix potential incidents loss when max page number reached
* add tests

* * amke linter happy

* make pre-commit happy

* make pre-commit happy

* Update Packs/NozomiNetworks/ReleaseNotes/1_0_19.md



* make pre-commit happy

* * update dependency
* update release note

---------

Co-authored-by: Nicolò <nicolo.ereni@nozominetworks.com>
Co-authored-by: inbalapt1 <164751454+inbalapt1@users.noreply.github.com>

* poetry files (#39516)

Co-authored-by: Content Bot <bot@demisto.com>

* Add logs to Splunk integration (#39504)

* init

* rn

* change

* fix rn

* update image

* space

* fix rn

* Update URL Phishing (#39239)

* init

* remove breaking changes

* RN

* more stuff

* more stuff

* more stuff

* return playbook

* RN

* holiday message (#39499)

* [HTTPFeedApiModule] Convert IP ranges to CIDRs (#39399)

* convert IP ranges to CIDRs

* added unitest and RN

* pre-commit

* Bump pack from version FeedBlocklist_de to 1.1.34.

* validate and pre-commit fixes

* pre-commit

* CR fixes

---------

Co-authored-by: Content Bot <bot@demisto.com>

* ServiceNow integration - add support for new timestamp format (#39507) (#39518)

* add new timestamp format

* update RNs

* Update Packs/ServiceNow/ReleaseNotes/2_7_13.md



---------

Co-authored-by: Ali Sawyer <91506078+ali-sawyer@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* CheckPoint Firewall - add-host small fix (#39528)

* fixed a context issue

* docker image update

* updated the rn

* Msft azure fix (#39534)

* fix

* added release notes

* added release notes

* init (#39536)

* poetry files (#39538)

Co-authored-by: Content Bot <bot@demisto.com>

* Fix get-valuelist cache bug in RSA Archer V2 (#39412)

* Fix malformed time arguments in qradar list offenses (#39422)

* added logs

* added logs

* added handling for malformed start time

* add tests and rn

* pre commit fixes

* EDL - remove excessive logs (#39546)

* EDL - remove excessive logs

* comment and not delete

* Azure AKS Element Fix (#39547)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Updated ParsingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Xsup 49272 (#39549)

* yml addition

* yml addition

* Trend Micro Vision One - Documentation update (#39544)

* README update

* example and docker image update

* rn

* updated the display name

* rn

* fix default platform layout ID (#39557)

* fix default platform layout ID

* added rn

* handle no incidents (#39523)

* handle no incidents

* handle other error

* handle limit exceeded

* wip

* fix ruff error

* add error log

* add unit testing

* add test executeCommand return empty response

* add unit test for general error

* add rn, update image tag

* add docstring for unit tests

* Update Packs/CommonScripts/ReleaseNotes/1_19_43.md

Co-authored-by: Yuval Hayun <70104171+YuvHayun@users.noreply.github.com>

* Update Packs/CommonScripts/ReleaseNotes/1_19_43.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* using is_error instead of isinstnce

* fix unit tests

* add comment

* fix rn

* fix pr comments

---------

Co-authored-by: Yuval Hayun <70104171+YuvHayun@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Fix Jira V3 fetch incidents timezone issue (#39234)

* new version 1.5.5 - ai summary command + new logo (#39262) (#39564)

* new version 1.5.5 - ai summary command + new logo

* reco: fix pre-commit

* Update Packs/Reco/Integrations/Reco/Reco.py



* reco: pr review

* Update Packs/Reco/ReleaseNotes/1_5_6.md



* Update Packs/Reco/Integrations/Reco/Reco.py



* fix linter

* reco-get-alert-ai-summary in yaml

* Update Packs/Reco/Integrations/Reco/Reco.py



* Update Packs/Reco/Integrations/Reco/Reco.py



* Update Packs/Reco/Integrations/Reco/Reco.py



* Update Docker image version in Reco integration

* Update Packs/Reco/ReleaseNotes/1_5_6.md



* update readme

* add to ignore

* remove line

---------

Co-authored-by: GalNakash-RecoLabs <71227802+GalNakash-RecoLabs@users.noreply.github.com>

* Common script clear user session update (#39397)

* Changed command context format + update handling get-data-user context change

* Added tests

---------

Co-authored-by: Content Bot <bot@demisto.com>

* Adapt CirclCVESearch integration to CVE 5.1 structure (#39252)

[CVE Search] Added support for CVE 5.1 format and deprecated `cve-latest` command

- Introduced parsing and enrichment for CVE 5.1 structured format.
- `cve-latest` command is now deprecated and only supports CVE 5.1 and legacy formats.

* XSUP-49293: Core Rest API - debug logs updating (#39558)

* updated the debug logs

* added a timeout to FeedLOLBas_test

* Alignment tags, keywords and categories packs (chunk1) (#39559)

* add C1 to supportedModules

* remove C1 from supportedModules

* Skip prisma cloud compute test (#39567)

* skipped tpb

* raised the timeout value

* added rn

* revert changing the integration

* updated the timeout value for runing list users in the tpb

* revert changing the tpb

* XSIAM-PB-Recurring-rare-domain-access-from-an-unsigned-process (#39404)

* Add new REST playbook, readme, image, trigger

* Update release notes

* Fix validation error

* Update release notes

* Fix validation error

* Remove unnecessary files

* update release notes

* update release notes

* Bump pack from version CortexResponseAndRemediation to 1.1.32.

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Bump pack from version CortexResponseAndRemediation to 1.1.33.

* Fix review comments

* Revert "Fix review comments"

This reverts commit d01470f.

* Fix review comments

* Bump pack from version CortexResponseAndRemediation to 1.1.34.

* Fix review comments

* Fix review comments

* Auto bump release notes

* Bump pack from version CortexResponseAndRemediation to 1.1.35.

* Fix review comments

* Add continue on error

* Fix condition to handle null value

* Add continue on error

* Fix terminate causality task

---------

Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* - Import changes
- variable renames
- Incorporate suggested changes

* - made session name optional
- added integration documentation.

* Renamed package and integration

* update Integration image

* new commands

* Implement p0 commands

* fixes

* reformat

* yml fixes

* pack readme

* docker image

* test image

* fixes

* rm

* fixes

* fixes

* fixes

* fixes

* added cts support

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule_test.py

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule_test.py

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule_test.py

* update

* docstring

* update

* update

* fixes

* update

* prep for COOC api module

* update

* refactor

* update api

* ec2-modify-instance-attribute

* HealthCheckResult

* update

* update api

* changed the context path to lower case (#40024)

* CS falcon fix context path in YML file (#40103)

* Fixed the context path in the CS falcon YML file

* RN

* Generic-api-call content pack (#40105)

* Generic-api-call content pack (#39914)

* Initial Commit

* Remove example calls

* Linting

* Code cleanup

* Fix typing issue

* Update YML

* Update author image

* Update integration image

* Updated YML for standardization

* Remove zone identifier artifact

* Linting fixes

* Add sectionorder

* Update YML file

* Add empty  test-module function

* Update pack metadata

* Add platform MP

---------

Co-authored-by: Josh Levine <76795471+TerminalFin@users.noreply.github.com>

* European Union Vulnerability Database (#39973) (#40106)

* initial commit

* format outputs

* unit tests and image

* improve tests

* add sectionorder

* anonimize data

* anonimyze unit test

Co-authored-by: Paul <32433511+pdragoi@users.noreply.github.com>

* Abnormal Security filter operator fix (#40049) (#40104)

* Fix equal operator in filter

* Fix unit tests

* Fix unit tests

* Update Release Notes

* Run ruff lint

Co-authored-by: Sumit Badsara <sbadsara@abnormalsecurity.com>

* Azure enhancement/ciac 12883 (#39644)

- Added support for msgraph-identity-ca-policy-create command to create a Conditional Access policy.
- Added support for msgraph-identity-ca-policy-delete command to delete a Conditional Access policy by ID.
- Added support for msgraph-identity-ca-policies-list command to retrieve one or all Conditional Access policies.
- Added support for msgraph-identity-ca-policy-update command to update.

* Generic api event collector fix (#40086)

* https://jira-dc.paloaltonetworks.com/browse/XSUP-50895

* integration to fix handling timestamp when it's an integer

* fix release notes

* Group-IB Cortex integration update (#40120)

* Group-IB Cortex integration update (#40017)

* Updated docker image, fixed bugs

* |Minor change

* |All done, waiting docker image update

* |Checked fix, increased version of integration and required docker images

* Fixes for merge and added a release note

* |Added tests

* |Edits from the review have been made

* |Small minor changes

* Update Packs/GroupIB_ThreatIntelligenceAttribution/ReleaseNotes/2_1_0.md

Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>

* Update Packs/GroupIB_ThreatIntelligenceAttribution/Integrations/GroupIBTIA/GroupIBTIA.py

Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>

* |Removed additionalinfo from the exclude_combolist parameter in GroupIBTIA.yml

* |Updated with pre-commit

---------

Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>

* Update RN

---------

Co-authored-by: Kirill <k.chekhlatov@group-ib.com>
Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>
Co-authored-by: Menachem <mwienfeld@paloaltonetworks.com>

* ParseEmailFilesV2: update parse to 0.1.38 (#40119)

* fixed

* update docker

* Fix task failures in silent (#40113)

* Add continue on error and skip if unavailable

* Update release notes

* Update release notes

* Improved task organization

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: OmriItzhak <115150792+OmriItzhak@users.noreply.github.com>

---------

Co-authored-by: OmriItzhak <115150792+OmriItzhak@users.noreply.github.com>

* [Marketplace Contribution] Community Common Dashboards - Content Pack Update (#40107)

* [Marketplace Contribution] Community Common Dashboards - Content Pack Update (#39972)

* "contribution update to pack 'Community Common Dashboards'"

* Update Packs/CommunityCommonDashboards/ReleaseNotes/2_1_1.md

Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>

* Update Packs/CommunityCommonDashboards/Scripts/XSOARValueMetrics/XSOARValueMetrics.py

Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>

* Update XSOARValueMetrics.py

add day=1 for pylint

---------

Co-authored-by: David Uhrlaub <90627446+rurhrlaub@users.noreply.github.com>
Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>

* update docker

---------

Co-authored-by: xsoar-bot <67315154+xsoar-bot@users.noreply.github.com>
Co-authored-by: David Uhrlaub <90627446+rurhrlaub@users.noreply.github.com>
Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>
Co-authored-by: Sapir Malka <samalka@paloaltonetworks.com>

* CRTX-173707-microsoft-windows-events (#40118)

* xif changes

* added release notes

* Elasticsearch v.1.3.33 ES|QL Support (#40117)

* Elasticsearch v.1.3.33 ES|QL Support (#40112)

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* ruff changes

* improve test

* improve test

---------

Co-authored-by: Martin Ohl <Martin.Ohl@ohl-net.eu>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>
Co-authored-by: Israel Lappe <79846863+ilappe@users.noreply.github.com>

* Update DomainTools Iris (#40048) (#40124)

* update test-module

* add contributors file

Co-authored-by: Paul <32433511+pdragoi@users.noreply.github.com>

* Increasing interval timeout for Joe Security polling request. (#40102)

* RDAP (#39324)

* RDAP

* pre-commit

* readme

* handling not found

* fixed uman readable in 404

* pre-commit

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* added missing outputs

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* readme

* readme

* readme

* Coverage

* CR

* CR2

* ruff

---------

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Adding 2 commands for Qualys (#40038)

* add 2 commands

* add the 2 commands to the yml

* pre commit

* works!

* pre commit

* RN

* README.md

* 3 UTs were added

* pre commit

* add outputs

* outputs

* Update Packs/qualys/Integrations/Qualysv2/Qualysv2.py

Co-authored-by: JudithB <132264628+jbabazadeh@users.noreply.github.com>

* comments from CR

* merge commands

* RN and README

* pre commit

* lint

* command_examples.txt

* a small fix in command_examples.txt

---------

Co-authored-by: JudithB <132264628+jbabazadeh@users.noreply.github.com>

* Ciac 13908 (#40095)

* bug fux

* bug fux

* added test

* added test

* CR

* Azure WAF Updating pack (#40132)

* Updating schema and modeling rules

* Updating RN

* XSUP-42246/fix-google-vault (#39535)

* add a fix

* fix docker image

* add the account value to the returen data

* update readme

* fix format yml and py, add sections

* timeout issues

* add logs

* removeNull and remove_empty_elements

* Fixed CR review

* Fixed CR review

* Auto Updated Docker PR from 2025-05-29 GitLab Pipeline ID 3586693 (#40133)

* Updated Docker Images.

* Updated Release Notes.

* Bump pack from version MicrosoftExchangeOnline to 1.6.11.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Content Bot <bot@demisto.com>

* Auto Updated Docker PR from 2025-06-01 GitLab Pipeline ID 3604252 (#40153)

* Updated Docker Images.

* Updated Release Notes.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Auto Updated Docker PR from 2025-06-02 GitLab Pipeline ID 3607926 (#40154)

* Updated Docker Images.

* Updated Release Notes.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Fix Cisco AMP endpoint command (#40127)

* Fix Cisco AMP endpoint command (#40028)

* Fix Cisco AMP endpoint command
Fixing an error in the endpoint command implementation for Cisco AMP. When the IP argument is used with multiple values, only the last response is returned.

* Create CONTRIBUTORS.json

* Fixed docker image AMP and added release notes.

* revert deprecated changes

* update RN

---------

Co-authored-by: Maximilian Lehrbaum <lehrbaumm@users.noreply.github.com>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>

* Exchange forwarding rule (#40162)

* Added new playbook

* added image and trigger file

* some changes

* added RN

* Bump pack from version Core to 3.0.95.

* new RN

* trigger id

* skipunavailable fix

* skipunavailable for pan-os

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured_README.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/ReleaseNotes/3_0_95.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/ReleaseNotes/3_0_95.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/ReleaseNotes/3_0_95.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* small fix

* new version

* added description to the new task

* fix

* fix in RN for the image

* PR review fixes

* fixes

* fix

* Bump pack from version Core to 3.0.96.

* added manual task for rule deletion

* fix

* fix

* new version

* rn

* Bump pack from version Core to 3.0.97.

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: Uriel Mishkin <165303216+umishkin@users.noreply.github.com>

* description fixes

* fix in RN

* d

* fixes for the playbook

* added RN

* fix

* fix

* added description

---------

Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: Uriel Mishkin <165303216+umishkin@users.noreply.github.com>

* Adminconsentfix (#40160)

* fix

* ReleaseNotes

* fix

* Bump pack from version CortexResponseAndRemediation to 1.1.57.

---------

Co-authored-by: Content Bot <bot@demisto.com>

* Auto Updated Docker PR from 2025-06-03 GitLab Pipeline ID 3614100 (#40157)

* Updated Docker Images.

* Updated Release Notes.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>

* Vmware vcenter enhancement - CRTX 174126 (#40134)

* Modified the modeling rule to improve user extraction and added support for vpxd logs

* Added RN

* modified RN

* XQLDSHelper - Added RequestURL, ResultURL, ExecutionID, and RecordSet parameters to the outputs. (#40088) (#40166)

* Merge

* revert package-lock.json

* Added new features

* Update RN

* Update docker image

Co-authored-by: Masahiko Inoue <54964121+spearmin10@users.noreply.github.com>

* update xsiam2.x configuration looks like xsiam 3.x (#40111)

* update xsiam2.x configuration looks like xsiam 3.x

* add RN

* hide mappers & classifiers from cs configuration on platform

* test

* Revert "test"

This reverts commit 8b38d61.

* remove mirror to platform sync

---------

Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>

* Fix GitHub feed parse errors (#40168)

* fix yara test demo

* fix yara test demo

* revert

* update Docker

* RN

* XSUP 51539 Microsoft Windows Update (#40169)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Jsontotable clickable links (#40167)

* Jsontotable clickable links (#40057)

* Modiyfing the JsonToTable script to create an MD table with clickable URL links.

* Updating pack version and release notes.

* Updating the docker image that is used on the JsonToTable automation.

* Updating release notes to include docker image update.

* Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_96.md

* Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_96.md

* update README

---------

Co-authored-by: Michael Eldridge <75812219+Pinger77@users.noreply.github.com>
Co-authored-by: Israel Lappe <79846863+ilappe@users.noreply.github.com>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>

* HealthCheckResult

* fixes

* health check

* health check

* health check

* test cts

* implement health_check

* update

* fix naming

* fix naming

* update azure cloud_type

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

Co-authored-by: barryyosi-panw <158817412+barryyosi-panw@users.noreply.github.com>

* health check fix

* precommit

* update

* update

* fixes

* health check fix

* health check fix

* update

* add get_x_caller_id

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

* proxydome token

* update

* update

* update

* pre commit

* small fix

* Update-record per error

* migrate commands

* migrate iam-role-policy-put

* migrate ec2 commands

* update

* update

* update

* migrate cloudtrail commands

* empty commit

* update - process accounts sequentially

* update - process accounts sequentially

* empty commit

* update

* delete all irrelevant code.

* fix

* delete [account_id] from msg

* fix tests

* aws fixes

* cr update

* cr update

* cr update

* update + rename the run_permissions_check_for_accounts

* fix test

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

* iam migration

* precommit

* precommit

* added tests

* fixes

* update

* precommit

* fixes

* tests

* fixes

* test arg_to_bool_or_none

* rn

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.py

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* rn & fixes

* rn

* fixes

* fixes

* fixes

* format

* precommit

* Readme

* replace error entry types with exceptions

* add missing commands to readme

* fix docstring

* fixes

* validations

* ruff

* Bump pack from version Base to 1.39.43.

* ruff f

* fix version

* fix tests

* Bump pack from version Base to 1.39.44.

* Bump pack from version Base to 1.39.45.

* unrequire 'role_name' param

* redundant sts client

* update rn version

* health check fix

* aggregate connectiviy errors

* redundancies

* remove breaking changes

* fix try except block

* precommit

* type hint

* tyep hint

---------

Co-authored-by: Tomer Haimof <81556849+tomer-pan@users.noreply.github.com>
Co-authored-by: eepstain <116078117+eepstain@users.noreply.github.com>
Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com>
Co-authored-by: Nicolò <nicolo.ereni@nozominetworks.com>
Co-authored-by: inbalapt1 <164751454+inbalapt1@users.noreply.github.com>
Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: Yehuda Rosenberg <90599084+RosenbergYehuda@users.noreply.github.com>
Co-authored-by: Jacob Levy <129657918+jlevypaloalto@users.noreply.github.com>
Co-authored-by: RotemAmit <ramit@paloaltonetworks.com>
Co-authored-by: Yaakov Praisler <59408745+yaakovpraisler@users.noreply.github.com>
Co-authored-by: Ali Sawyer <91506078+ali-sawyer@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: sdaniel6 <sdaniel@paloaltonetworks.com>
Co-authored-by: Kamal Qarain <45042524+kamalq97@users.noreply.github.com>
Co-authored-by: Yuval Hayun <70104171+YuvHayun@users.noreply.github.com>
Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com>
Co-authored-by: EyalPintzov <91007713+eyalpalo@users.noreply.github.com>
Co-authored-by: ilaredo <166304750+ilaredo@users.noreply.github.com>
Co-authored-by: GalNakash-RecoLabs <71227802+GalNakash-RecoLabs@users.noreply.github.com>
Co-authored-by: almog2296 <alabudi@paloaltonetworks.com>
Co-authored-by: hyaffe839 <hyaffe@paloaltonetworks.com>
Co-authored-by: AviShakuri <ashakuri@paloaltonetworks.com>
Co-authored-by: darbel <darbel@paloaltonetworks.com>
Co-authored-by: merit-maita <49760643+merit-maita@users.noreply.github.com>
Co-authored-by: Erez FelmanDar <102903097+efelmandar@users.noreply.github.com>
Co-authored-by: Anmol Baansal <abaansal@paloaltonetworks.com>
Co-authored-by: michal-dagan <mdagan@paloaltonetworks.com>
Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com>
Co-authored-by: Josh Levine <76795471+TerminalFin@users.noreply.github.com>
Co-authored-by: Paul <32433511+pdragoi@users.noreply.github.com>
Co-authored-by: Sumit Badsara <sbadsara@abnormalsecurity.com>
Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com>
Co-authored-by: Kirill <k.chekhlatov@group-ib.com>
Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>
Co-authored-by: Menachem <mwienfeld@paloaltonetworks.com>
Co-authored-by: Moshe Galitzky <112559840+moishce@users.noreply.github.com>
Co-authored-by: OmriItzhak <115150792+OmriItzhak@users.noreply.github.com>
Co-authored-by: xsoar-bot <67315154+xsoar-bot@users.noreply.github.com>
Co-authored-by: David Uhrlaub <90627446+rurhrlaub@users.noreply.github.com>
Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>
Co-authored-by: Sapir Malka <samalka@paloaltonetworks.com>
Co-authored-by: Martin Ohl <Martin.Ohl@ohl-net.eu>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>
Co-authored-by: Israel Lappe <79846863+ilappe@users.noreply.github.com>
Co-authored-by: noydavidi <77931201+noydavidi@users.noreply.github.com>
Co-authored-by: Dror Avrahami <davrahami@paloaltonetworks.com>
Co-authored-by: rshunim <102469772+rshunim@users.noreply.github.com>
Co-authored-by: JudithB <132264628+jbabazadeh@users.noreply.github.com>
Co-authored-by: ellopez777 <159898322+ellopez777@users.noreply.github.com>
Co-authored-by: Sapir Shuker <49246861+sapirshuker@users.noreply.github.com>
Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Maximilian Lehrbaum <lehrbaumm@users.noreply.github.com>
Co-authored-by: Karina Fishman <147307864+karinafishman@users.noreply.github.com>
Co-authored-by: Uriel Mishkin <165303216+umishkin@users.noreply.github.com>
Co-authored-by: ArikDay <115150768+ArikDay@users.noreply.github.com>
Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com>
Co-authored-by: Masahiko Inoue <54964121+spearmin10@users.noreply.github.com>
Co-authored-by: lironcohen272 <lircohen@paloaltonetworks.com>
Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>
Co-authored-by: Michael Eldridge <75812219+Pinger77@users.noreply.github.com>
Co-authored-by: iapt@paloaltonetworks.com <iapt@paloaltonetworks.com>
Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>
TOUFIKIzakarya pushed a commit to TOUFIKIzakarya/content that referenced this pull request Jul 24, 2025
@barryyosi-panw @tomer-pan
@eepstain @content-bot @nicoloereni @inbalapt1 @RosenbergYehuda @jlevypaloalto @RotemAmit @yaakovpraisler @ali-sawyer @MosheEichler @ShirleyDenkberg @sdaniel6 @kamalq97 @YuvHayun @MLainer1 @eyalpalo @ilaredo @GalNakash-RecoLabs @almog2296 @hyaffe839 @AviShakuri @DeanArbel @merit-maita @efelmandar @abaansalpanw @michal-dagan @TerminalFin @pdragoi @sumit-badsara @kobymeir @Kchekh @mmhw @moishce @OmriItzhak @xsoar-bot @rurhrlaub @itssapir @mohlcyber @ilappe @noydavidi @Ni-Knight @rshunim @jbabazadeh @ellopez777 @sapirshuker @lehrbaumm @karinafishman @umishkin @ArikDay @yasta5 @spearmin10 @lironcohen272 @thefrieddan1 @Pinger77 @dantavori @TOUFIKIzakarya
Byosi/aws unified integration (demisto#39632)
27ae381 
* Suspicious user access to multiple resources via sso trigger (demisto#39514)

* Add trigger

* RN

* Add trigger

* RN

* RN

* after review

* RN

* MSFT O365 Email Enh. (demisto#39503)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Nozomi fix potential incidents loss when max page number reached (demisto#39331) (demisto#39517)

* * fix potential incidents loss when max page number reached
* add tests

* * amke linter happy

* make pre-commit happy

* make pre-commit happy

* Update Packs/NozomiNetworks/ReleaseNotes/1_0_19.md



* make pre-commit happy

* * update dependency
* update release note

---------

Co-authored-by: Nicolò <nicolo.ereni@nozominetworks.com>
Co-authored-by: inbalapt1 <164751454+inbalapt1@users.noreply.github.com>

* poetry files (demisto#39516)

Co-authored-by: Content Bot <bot@demisto.com>

* Add logs to Splunk integration (demisto#39504)

* init

* rn

* change

* fix rn

* update image

* space

* fix rn

* Update URL Phishing (demisto#39239)

* init

* remove breaking changes

* RN

* more stuff

* more stuff

* more stuff

* return playbook

* RN

* holiday message (demisto#39499)

* [HTTPFeedApiModule] Convert IP ranges to CIDRs (demisto#39399)

* convert IP ranges to CIDRs

* added unitest and RN

* pre-commit

* Bump pack from version FeedBlocklist_de to 1.1.34.

* validate and pre-commit fixes

* pre-commit

* CR fixes

---------

Co-authored-by: Content Bot <bot@demisto.com>

* ServiceNow integration - add support for new timestamp format (demisto#39507) (demisto#39518)

* add new timestamp format

* update RNs

* Update Packs/ServiceNow/ReleaseNotes/2_7_13.md



---------

Co-authored-by: Ali Sawyer <91506078+ali-sawyer@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* CheckPoint Firewall - add-host small fix (demisto#39528)

* fixed a context issue

* docker image update

* updated the rn

* Msft azure fix (demisto#39534)

* fix

* added release notes

* added release notes

* init (demisto#39536)

* poetry files (demisto#39538)

Co-authored-by: Content Bot <bot@demisto.com>

* Fix get-valuelist cache bug in RSA Archer V2 (demisto#39412)

* Fix malformed time arguments in qradar list offenses (demisto#39422)

* added logs

* added logs

* added handling for malformed start time

* add tests and rn

* pre commit fixes

* EDL - remove excessive logs (demisto#39546)

* EDL - remove excessive logs

* comment and not delete

* Azure AKS Element Fix (demisto#39547)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Updated ModelingRules

* Updated ParsingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Xsup 49272 (demisto#39549)

* yml addition

* yml addition

* Trend Micro Vision One - Documentation update (demisto#39544)

* README update

* example and docker image update

* rn

* updated the display name

* rn

* fix default platform layout ID (demisto#39557)

* fix default platform layout ID

* added rn

* handle no incidents (demisto#39523)

* handle no incidents

* handle other error

* handle limit exceeded

* wip

* fix ruff error

* add error log

* add unit testing

* add test executeCommand return empty response

* add unit test for general error

* add rn, update image tag

* add docstring for unit tests

* Update Packs/CommonScripts/ReleaseNotes/1_19_43.md

Co-authored-by: Yuval Hayun <70104171+YuvHayun@users.noreply.github.com>

* Update Packs/CommonScripts/ReleaseNotes/1_19_43.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* using is_error instead of isinstnce

* fix unit tests

* add comment

* fix rn

* fix pr comments

---------

Co-authored-by: Yuval Hayun <70104171+YuvHayun@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Fix Jira V3 fetch incidents timezone issue (demisto#39234)

* new version 1.5.5 - ai summary command + new logo (demisto#39262) (demisto#39564)

* new version 1.5.5 - ai summary command + new logo

* reco: fix pre-commit

* Update Packs/Reco/Integrations/Reco/Reco.py



* reco: pr review

* Update Packs/Reco/ReleaseNotes/1_5_6.md



* Update Packs/Reco/Integrations/Reco/Reco.py



* fix linter

* reco-get-alert-ai-summary in yaml

* Update Packs/Reco/Integrations/Reco/Reco.py



* Update Packs/Reco/Integrations/Reco/Reco.py



* Update Packs/Reco/Integrations/Reco/Reco.py



* Update Docker image version in Reco integration

* Update Packs/Reco/ReleaseNotes/1_5_6.md



* update readme

* add to ignore

* remove line

---------

Co-authored-by: GalNakash-RecoLabs <71227802+GalNakash-RecoLabs@users.noreply.github.com>

* Common script clear user session update (demisto#39397)

* Changed command context format + update handling get-data-user context change

* Added tests

---------

Co-authored-by: Content Bot <bot@demisto.com>

* Adapt CirclCVESearch integration to CVE 5.1 structure (demisto#39252)

[CVE Search] Added support for CVE 5.1 format and deprecated `cve-latest` command

- Introduced parsing and enrichment for CVE 5.1 structured format.
- `cve-latest` command is now deprecated and only supports CVE 5.1 and legacy formats.

* XSUP-49293: Core Rest API - debug logs updating (demisto#39558)

* updated the debug logs

* added a timeout to FeedLOLBas_test

* Alignment tags, keywords and categories packs (chunk1) (demisto#39559)

* add C1 to supportedModules

* remove C1 from supportedModules

* Skip prisma cloud compute test (demisto#39567)

* skipped tpb

* raised the timeout value

* added rn

* revert changing the integration

* updated the timeout value for runing list users in the tpb

* revert changing the tpb

* XSIAM-PB-Recurring-rare-domain-access-from-an-unsigned-process (demisto#39404)

* Add new REST playbook, readme, image, trigger

* Update release notes

* Fix validation error

* Update release notes

* Fix validation error

* Remove unnecessary files

* update release notes

* update release notes

* Bump pack from version CortexResponseAndRemediation to 1.1.32.

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Bump pack from version CortexResponseAndRemediation to 1.1.33.

* Fix review comments

* Revert "Fix review comments"

This reverts commit d01470f.

* Fix review comments

* Bump pack from version CortexResponseAndRemediation to 1.1.34.

* Fix review comments

* Fix review comments

* Auto bump release notes

* Bump pack from version CortexResponseAndRemediation to 1.1.35.

* Fix review comments

* Add continue on error

* Fix condition to handle null value

* Add continue on error

* Fix terminate causality task

---------

Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* - Import changes
- variable renames
- Incorporate suggested changes

* - made session name optional
- added integration documentation.

* Renamed package and integration

* update Integration image

* new commands

* Implement p0 commands

* fixes

* reformat

* yml fixes

* pack readme

* docker image

* test image

* fixes

* rm

* fixes

* fixes

* fixes

* fixes

* added cts support

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule_test.py

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule_test.py

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule_test.py

* update

* docstring

* update

* update

* fixes

* update

* prep for COOC api module

* update

* refactor

* update api

* ec2-modify-instance-attribute

* HealthCheckResult

* update

* update api

* changed the context path to lower case (demisto#40024)

* CS falcon fix context path in YML file (demisto#40103)

* Fixed the context path in the CS falcon YML file

* RN

* Generic-api-call content pack (demisto#40105)

* Generic-api-call content pack (demisto#39914)

* Initial Commit

* Remove example calls

* Linting

* Code cleanup

* Fix typing issue

* Update YML

* Update author image

* Update integration image

* Updated YML for standardization

* Remove zone identifier artifact

* Linting fixes

* Add sectionorder

* Update YML file

* Add empty  test-module function

* Update pack metadata

* Add platform MP

---------

Co-authored-by: Josh Levine <76795471+TerminalFin@users.noreply.github.com>

* European Union Vulnerability Database (demisto#39973) (demisto#40106)

* initial commit

* format outputs

* unit tests and image

* improve tests

* add sectionorder

* anonimize data

* anonimyze unit test

Co-authored-by: Paul <32433511+pdragoi@users.noreply.github.com>

* Abnormal Security filter operator fix (demisto#40049) (demisto#40104)

* Fix equal operator in filter

* Fix unit tests

* Fix unit tests

* Update Release Notes

* Run ruff lint

Co-authored-by: Sumit Badsara <sbadsara@abnormalsecurity.com>

* Azure enhancement/ciac 12883 (demisto#39644)

- Added support for msgraph-identity-ca-policy-create command to create a Conditional Access policy.
- Added support for msgraph-identity-ca-policy-delete command to delete a Conditional Access policy by ID.
- Added support for msgraph-identity-ca-policies-list command to retrieve one or all Conditional Access policies.
- Added support for msgraph-identity-ca-policy-update command to update.

* Generic api event collector fix (demisto#40086)

* https://jira-dc.paloaltonetworks.com/browse/XSUP-50895

* integration to fix handling timestamp when it's an integer

* fix release notes

* Group-IB Cortex integration update (demisto#40120)

* Group-IB Cortex integration update (demisto#40017)

* Updated docker image, fixed bugs

* |Minor change

* |All done, waiting docker image update

* |Checked fix, increased version of integration and required docker images

* Fixes for merge and added a release note

* |Added tests

* |Edits from the review have been made

* |Small minor changes

* Update Packs/GroupIB_ThreatIntelligenceAttribution/ReleaseNotes/2_1_0.md

Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>

* Update Packs/GroupIB_ThreatIntelligenceAttribution/Integrations/GroupIBTIA/GroupIBTIA.py

Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>

* |Removed additionalinfo from the exclude_combolist parameter in GroupIBTIA.yml

* |Updated with pre-commit

---------

Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>

* Update RN

---------

Co-authored-by: Kirill <k.chekhlatov@group-ib.com>
Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>
Co-authored-by: Menachem <mwienfeld@paloaltonetworks.com>

* ParseEmailFilesV2: update parse to 0.1.38 (demisto#40119)

* fixed

* update docker

* Fix task failures in silent (demisto#40113)

* Add continue on error and skip if unavailable

* Update release notes

* Update release notes

* Improved task organization

* Update Packs/CortexResponseAndRemediation/Playbooks/silent-playbook-Recurring_rare_domain_access_from_an_unsigned_process.yml

Co-authored-by: OmriItzhak <115150792+OmriItzhak@users.noreply.github.com>

---------

Co-authored-by: OmriItzhak <115150792+OmriItzhak@users.noreply.github.com>

* [Marketplace Contribution] Community Common Dashboards - Content Pack Update (demisto#40107)

* [Marketplace Contribution] Community Common Dashboards - Content Pack Update (demisto#39972)

* "contribution update to pack 'Community Common Dashboards'"

* Update Packs/CommunityCommonDashboards/ReleaseNotes/2_1_1.md

Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>

* Update Packs/CommunityCommonDashboards/Scripts/XSOARValueMetrics/XSOARValueMetrics.py

Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>

* Update XSOARValueMetrics.py

add day=1 for pylint

---------

Co-authored-by: David Uhrlaub <90627446+rurhrlaub@users.noreply.github.com>
Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>

* update docker

---------

Co-authored-by: xsoar-bot <67315154+xsoar-bot@users.noreply.github.com>
Co-authored-by: David Uhrlaub <90627446+rurhrlaub@users.noreply.github.com>
Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>
Co-authored-by: Sapir Malka <samalka@paloaltonetworks.com>

* CRTX-173707-microsoft-windows-events (demisto#40118)

* xif changes

* added release notes

* Elasticsearch v.1.3.33 ES|QL Support (demisto#40117)

* Elasticsearch v.1.3.33 ES|QL Support (demisto#40112)

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* Elasticsearch v1.3.33

* ruff changes

* improve test

* improve test

---------

Co-authored-by: Martin Ohl <Martin.Ohl@ohl-net.eu>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>
Co-authored-by: Israel Lappe <79846863+ilappe@users.noreply.github.com>

* Update DomainTools Iris (demisto#40048) (demisto#40124)

* update test-module

* add contributors file

Co-authored-by: Paul <32433511+pdragoi@users.noreply.github.com>

* Increasing interval timeout for Joe Security polling request. (demisto#40102)

* RDAP (demisto#39324)

* RDAP

* pre-commit

* readme

* handling not found

* fixed uman readable in 404

* pre-commit

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* added missing outputs

* Apply suggestions from code review

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* readme

* readme

* readme

* Coverage

* CR

* CR2

* ruff

---------

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Adding 2 commands for Qualys (demisto#40038)

* add 2 commands

* add the 2 commands to the yml

* pre commit

* works!

* pre commit

* RN

* README.md

* 3 UTs were added

* pre commit

* add outputs

* outputs

* Update Packs/qualys/Integrations/Qualysv2/Qualysv2.py

Co-authored-by: JudithB <132264628+jbabazadeh@users.noreply.github.com>

* comments from CR

* merge commands

* RN and README

* pre commit

* lint

* command_examples.txt

* a small fix in command_examples.txt

---------

Co-authored-by: JudithB <132264628+jbabazadeh@users.noreply.github.com>

* Ciac 13908 (demisto#40095)

* bug fux

* bug fux

* added test

* added test

* CR

* Azure WAF Updating pack (demisto#40132)

* Updating schema and modeling rules

* Updating RN

* XSUP-42246/fix-google-vault (demisto#39535)

* add a fix

* fix docker image

* add the account value to the returen data

* update readme

* fix format yml and py, add sections

* timeout issues

* add logs

* removeNull and remove_empty_elements

* Fixed CR review

* Fixed CR review

* Auto Updated Docker PR from 2025-05-29 GitLab Pipeline ID 3586693 (demisto#40133)

* Updated Docker Images.

* Updated Release Notes.

* Bump pack from version MicrosoftExchangeOnline to 1.6.11.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Content Bot <bot@demisto.com>

* Auto Updated Docker PR from 2025-06-01 GitLab Pipeline ID 3604252 (demisto#40153)

* Updated Docker Images.

* Updated Release Notes.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Auto Updated Docker PR from 2025-06-02 GitLab Pipeline ID 3607926 (demisto#40154)

* Updated Docker Images.

* Updated Release Notes.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>

* Fix Cisco AMP endpoint command (demisto#40127)

* Fix Cisco AMP endpoint command (demisto#40028)

* Fix Cisco AMP endpoint command
Fixing an error in the endpoint command implementation for Cisco AMP. When the IP argument is used with multiple values, only the last response is returned.

* Create CONTRIBUTORS.json

* Fixed docker image AMP and added release notes.

* revert deprecated changes

* update RN

---------

Co-authored-by: Maximilian Lehrbaum <lehrbaumm@users.noreply.github.com>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>

* Exchange forwarding rule (demisto#40162)

* Added new playbook

* added image and trigger file

* some changes

* added RN

* Bump pack from version Core to 3.0.95.

* new RN

* trigger id

* skipunavailable fix

* skipunavailable for pan-os

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured_README.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/ReleaseNotes/3_0_95.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/ReleaseNotes/3_0_95.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/ReleaseNotes/3_0_95.md

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>

* small fix

* new version

* added description to the new task

* fix

* fix in RN for the image

* PR review fixes

* fixes

* fix

* Bump pack from version Core to 3.0.96.

* added manual task for rule deletion

* fix

* fix

* new version

* rn

* Bump pack from version Core to 3.0.97.

* Update Packs/Core/Playbooks/playbook-Exchange_forwarding_rule_configured.yml

Co-authored-by: Uriel Mishkin <165303216+umishkin@users.noreply.github.com>

* description fixes

* fix in RN

* d

* fixes for the playbook

* added RN

* fix

* fix

* added description

---------

Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: Uriel Mishkin <165303216+umishkin@users.noreply.github.com>

* Adminconsentfix (demisto#40160)

* fix

* ReleaseNotes

* fix

* Bump pack from version CortexResponseAndRemediation to 1.1.57.

---------

Co-authored-by: Content Bot <bot@demisto.com>

* Auto Updated Docker PR from 2025-06-03 GitLab Pipeline ID 3614100 (demisto#40157)

* Updated Docker Images.

* Updated Release Notes.

---------

Co-authored-by: content-bot <content-bot@users.noreply.github.com>

* Vmware vcenter enhancement - CRTX 174126 (demisto#40134)

* Modified the modeling rule to improve user extraction and added support for vpxd logs

* Added RN

* modified RN

* XQLDSHelper - Added RequestURL, ResultURL, ExecutionID, and RecordSet parameters to the outputs. (demisto#40088) (demisto#40166)

* Merge

* revert package-lock.json

* Added new features

* Update RN

* Update docker image

Co-authored-by: Masahiko Inoue <54964121+spearmin10@users.noreply.github.com>

* update xsiam2.x configuration looks like xsiam 3.x (demisto#40111)

* update xsiam2.x configuration looks like xsiam 3.x

* add RN

* hide mappers & classifiers from cs configuration on platform

* test

* Revert "test"

This reverts commit 8b38d61.

* remove mirror to platform sync

---------

Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>

* Fix GitHub feed parse errors (demisto#40168)

* fix yara test demo

* fix yara test demo

* revert

* update Docker

* RN

* XSUP 51539 Microsoft Windows Update (demisto#40169)

* Updated ModelingRules

* Updated ReleaseNotes

* Updated ReleaseNotes

* Jsontotable clickable links (demisto#40167)

* Jsontotable clickable links (demisto#40057)

* Modiyfing the JsonToTable script to create an MD table with clickable URL links.

* Updating pack version and release notes.

* Updating the docker image that is used on the JsonToTable automation.

* Updating release notes to include docker image update.

* Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_96.md

* Update Packs/FiltersAndTransformers/ReleaseNotes/1_2_96.md

* update README

---------

Co-authored-by: Michael Eldridge <75812219+Pinger77@users.noreply.github.com>
Co-authored-by: Israel Lappe <79846863+ilappe@users.noreply.github.com>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>

* HealthCheckResult

* fixes

* health check

* health check

* health check

* test cts

* implement health_check

* update

* fix naming

* fix naming

* update azure cloud_type

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

Co-authored-by: barryyosi-panw <158817412+barryyosi-panw@users.noreply.github.com>

* health check fix

* precommit

* update

* update

* fixes

* health check fix

* health check fix

* update

* add get_x_caller_id

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

* proxydome token

* update

* update

* update

* pre commit

* small fix

* Update-record per error

* migrate commands

* migrate iam-role-policy-put

* migrate ec2 commands

* update

* update

* update

* migrate cloudtrail commands

* empty commit

* update - process accounts sequentially

* update - process accounts sequentially

* empty commit

* update

* delete all irrelevant code.

* fix

* delete [account_id] from msg

* fix tests

* aws fixes

* cr update

* cr update

* cr update

* update + rename the run_permissions_check_for_accounts

* fix test

* Update Packs/ApiModules/Scripts/COOCApiModule/COOCApiModule.py

* iam migration

* precommit

* precommit

* added tests

* fixes

* update

* precommit

* fixes

* tests

* fixes

* test arg_to_bool_or_none

* rn

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.py

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* Update Packs/AWS/Integrations/AWS/AWS.yml

Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>

* rn & fixes

* rn

* fixes

* fixes

* fixes

* format

* precommit

* Readme

* replace error entry types with exceptions

* add missing commands to readme

* fix docstring

* fixes

* validations

* ruff

* Bump pack from version Base to 1.39.43.

* ruff f

* fix version

* fix tests

* Bump pack from version Base to 1.39.44.

* Bump pack from version Base to 1.39.45.

* unrequire 'role_name' param

* redundant sts client

* update rn version

* health check fix

* aggregate connectiviy errors

* redundancies

* remove breaking changes

* fix try except block

* precommit

* type hint

* tyep hint

---------

Co-authored-by: Tomer Haimof <81556849+tomer-pan@users.noreply.github.com>
Co-authored-by: eepstain <116078117+eepstain@users.noreply.github.com>
Co-authored-by: content-bot <55035720+content-bot@users.noreply.github.com>
Co-authored-by: Nicolò <nicolo.ereni@nozominetworks.com>
Co-authored-by: inbalapt1 <164751454+inbalapt1@users.noreply.github.com>
Co-authored-by: Content Bot <bot@demisto.com>
Co-authored-by: Yehuda Rosenberg <90599084+RosenbergYehuda@users.noreply.github.com>
Co-authored-by: Jacob Levy <129657918+jlevypaloalto@users.noreply.github.com>
Co-authored-by: RotemAmit <ramit@paloaltonetworks.com>
Co-authored-by: Yaakov Praisler <59408745+yaakovpraisler@users.noreply.github.com>
Co-authored-by: Ali Sawyer <91506078+ali-sawyer@users.noreply.github.com>
Co-authored-by: Moshe Eichler <78307768+MosheEichler@users.noreply.github.com>
Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com>
Co-authored-by: sdaniel6 <sdaniel@paloaltonetworks.com>
Co-authored-by: Kamal Qarain <45042524+kamalq97@users.noreply.github.com>
Co-authored-by: Yuval Hayun <70104171+YuvHayun@users.noreply.github.com>
Co-authored-by: MLainer1 <93524335+MLainer1@users.noreply.github.com>
Co-authored-by: EyalPintzov <91007713+eyalpalo@users.noreply.github.com>
Co-authored-by: ilaredo <166304750+ilaredo@users.noreply.github.com>
Co-authored-by: GalNakash-RecoLabs <71227802+GalNakash-RecoLabs@users.noreply.github.com>
Co-authored-by: almog2296 <alabudi@paloaltonetworks.com>
Co-authored-by: hyaffe839 <hyaffe@paloaltonetworks.com>
Co-authored-by: AviShakuri <ashakuri@paloaltonetworks.com>
Co-authored-by: darbel <darbel@paloaltonetworks.com>
Co-authored-by: merit-maita <49760643+merit-maita@users.noreply.github.com>
Co-authored-by: Erez FelmanDar <102903097+efelmandar@users.noreply.github.com>
Co-authored-by: Anmol Baansal <abaansal@paloaltonetworks.com>
Co-authored-by: michal-dagan <mdagan@paloaltonetworks.com>
Co-authored-by: michal-dagan <109464765+michal-dagan@users.noreply.github.com>
Co-authored-by: Josh Levine <76795471+TerminalFin@users.noreply.github.com>
Co-authored-by: Paul <32433511+pdragoi@users.noreply.github.com>
Co-authored-by: Sumit Badsara <sbadsara@abnormalsecurity.com>
Co-authored-by: Koby Meir <kobymeir@users.noreply.github.com>
Co-authored-by: Kirill <k.chekhlatov@group-ib.com>
Co-authored-by: Menachem Weinfeld <90556466+mmhw@users.noreply.github.com>
Co-authored-by: Menachem <mwienfeld@paloaltonetworks.com>
Co-authored-by: Moshe Galitzky <112559840+moishce@users.noreply.github.com>
Co-authored-by: OmriItzhak <115150792+OmriItzhak@users.noreply.github.com>
Co-authored-by: xsoar-bot <67315154+xsoar-bot@users.noreply.github.com>
Co-authored-by: David Uhrlaub <90627446+rurhrlaub@users.noreply.github.com>
Co-authored-by: Sapir Malka <44067957+itssapir@users.noreply.github.com>
Co-authored-by: Sapir Malka <samalka@paloaltonetworks.com>
Co-authored-by: Martin Ohl <Martin.Ohl@ohl-net.eu>
Co-authored-by: ilappe <ilappe@paloaltonetworks.com>
Co-authored-by: Israel Lappe <79846863+ilappe@users.noreply.github.com>
Co-authored-by: noydavidi <77931201+noydavidi@users.noreply.github.com>
Co-authored-by: Dror Avrahami <davrahami@paloaltonetworks.com>
Co-authored-by: rshunim <102469772+rshunim@users.noreply.github.com>
Co-authored-by: JudithB <132264628+jbabazadeh@users.noreply.github.com>
Co-authored-by: ellopez777 <159898322+ellopez777@users.noreply.github.com>
Co-authored-by: Sapir Shuker <49246861+sapirshuker@users.noreply.github.com>
Co-authored-by: content-bot <content-bot@users.noreply.github.com>
Co-authored-by: Maximilian Lehrbaum <lehrbaumm@users.noreply.github.com>
Co-authored-by: Karina Fishman <147307864+karinafishman@users.noreply.github.com>
Co-authored-by: Uriel Mishkin <165303216+umishkin@users.noreply.github.com>
Co-authored-by: ArikDay <115150768+ArikDay@users.noreply.github.com>
Co-authored-by: yasta5 <112320333+yasta5@users.noreply.github.com>
Co-authored-by: Masahiko Inoue <54964121+spearmin10@users.noreply.github.com>
Co-authored-by: lironcohen272 <lircohen@paloaltonetworks.com>
Co-authored-by: Danny_Fried <dfried@paloaltonetworks.com>
Co-authored-by: Michael Eldridge <75812219+Pinger77@users.noreply.github.com>
Co-authored-by: iapt@paloaltonetworks.com <iapt@paloaltonetworks.com>
Co-authored-by: Dan Tavori <38749041+dantavori@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@eyalpalo eyalpalo eyalpalo approved these changes

Assignees

No one assigned

Labels

docs-approved

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@RotemAmit @content-bot @eyalpalo