Closed
Conversation
- Implemented public submission page with search and submit tabs. - Added form for searching existing indicators with auto-detection of IOC type. - Created submission form for new indicators including fields for confidence level, description, reason, and contact information. - Integrated success and error handling for both search and submission processes. - Developed detailed submission view with submission information, submitter details, and matched IOCs. - Added filtering options for submissions list and pagination support. - Included modal for creating IOC from submission with necessary fields and validation.
- Updated environment variables in .env.example to reflect new project name. - Changed references in README.md to ELASLIP. - Updated Elasticsearch index names and mappings from 'elasmisp' to 'elaslip' across multiple files. - Modified Docker Compose files to use ELASLIP image and container names. - Adjusted demo data generation script to reflect new project name. - Updated dashboard and public submission templates with new GitHub link and project name. - Enhanced public search and submission routes with audit logging for better tracking.
…ats functionality
…hook settings UI (#20)
* feat: Add webhook support for public submission events and update webhook settings UI * feat: Implement duplicate submission handling and status retrieval in submissions API ---------
* feat: Add webhook support for public submission events and update webhook settings UI * feat: Implement duplicate submission handling and status retrieval in submissions API * feat: Enhance STIX parsing and IOC handling, improve file type detection, and add demo data * feat: Enhance IOC graph with dynamic legend and styling for IOC types * feat: Implement backup and restore functionality with UI integration * fix: Update Elasticsearch queries to use keyword fields for accurate aggregations
- Added new webhook events: incident.created, incident.updated, case.created, case.updated, checklist.created, checklist.updated, and various report events. - Updated webhook creation to include 'secret' and 'is_enabled' fields. - Modified webhook retrieval to return a structured response. - Improved webhook update logic to handle 'is_enabled' field. - Adjusted webhook dispatch logic to include webhook name in the payload. refactor(enrichment): Change authorization header for bearer tokens - Updated the enrichment service to use 'X-API-Key' header instead of 'Authorization' for bearer tokens. refactor(report): Simplify API key handling in report service - Streamlined API key encoding logic in report service to directly use the key in the Authorization header. feat(report_tasks): Dispatch webhooks for report generation - Implemented webhook dispatching for report generation events (IOC, case, incident, checklist) with appropriate payloads. fix(webhook_tasks): Update webhook dispatch logic to include webhook name - Modified the send_webhook function to include the webhook name in the log entry. chore(tests): Reintroduce test key creation and debugging scripts - Added create_test_key.py and debug_api_key.py scripts for generating and debugging API keys. docs(api): Update API documentation to reflect new authentication method - Changed documentation to specify the use of 'X-API-Key' header for authentication instead of Bearer token. style(settings): Enhance UI for API key management and webhooks - Improved the layout and styling of the API keys and webhooks settings pages, including new permission scopes for API keys.
* feat: Implement notification system with user management and UI enhancements - Added scripts to check notifications by user, last notification, and all unique user IDs in notifications. - Developed a debug report script to fetch the last report and admin user details. - Created a list of unique user IDs from notifications with counts. - Introduced a notification sidebar with CSS for both light and dark modes. - Implemented JavaScript for managing notifications, including fetching, displaying, and marking as read. - Designed a notifications HTML template with filtering options and statistics. - Added tests for admin user loading and notification creation. - Enhanced user ID retrieval tests. * refactor: Remove versioning functionality and related tests * refactor: Remove versioning functionality and related tests --------- Co-authored-by: LL7B <ll7baucarre@pm.me>
* feat: Implement notification system with user management and UI enhancements - Added scripts to check notifications by user, last notification, and all unique user IDs in notifications. - Developed a debug report script to fetch the last report and admin user details. - Created a list of unique user IDs from notifications with counts. - Introduced a notification sidebar with CSS for both light and dark modes. - Implemented JavaScript for managing notifications, including fetching, displaying, and marking as read. - Designed a notifications HTML template with filtering options and statistics. - Added tests for admin user loading and notification creation. - Enhanced user ID retrieval tests. * refactor: Remove versioning functionality and related tests * Initial plan * Add HTML escaping to prevent XSS in critical templates Co-authored-by: LL7Baucarre <141127344+LL7Baucarre@users.noreply.github.com> * Add HTML escaping to settings, graph, and snippets templates Co-authored-by: LL7Baucarre <141127344+LL7Baucarre@users.noreply.github.com> * Add HTML escaping to incidents list template Co-authored-by: LL7Baucarre <141127344+LL7Baucarre@users.noreply.github.com> * Fix: Remove escaping from IDs in URLs and JS function parameters Co-authored-by: LL7Baucarre <141127344+LL7Baucarre@users.noreply.github.com> * Optimize: Remove unnecessary escaping of numeric and system values Co-authored-by: LL7Baucarre <141127344+LL7Baucarre@users.noreply.github.com> --------- Co-authored-by: LL7B <ll7baucarre@pm.me> Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com> Co-authored-by: LL7Baucarre <141127344+LL7Baucarre@users.noreply.github.com>
- Enable LLM report generation and set default values in .env.example - Update GitHub Actions to use specific versions of actions - Improve validation for IP addresses and ports in tools_service.py - Refactor notification rendering in notifications.js for better DOM manipulation - Enhance pagination logic in pagination.js with event delegation - Fix JSON serialization in detail templates for IOCs - Update dependencies in requirements.txt
accuracy and performance
fix: Refactor notification action buttons to use createElement for icons
… prompts in LLM settings
…ance clarity and detail
…lth check endpoints
…eate dropdown menu
Bump application version to 1.1.0
Refactor to IOC and QoL improvements
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.