[UA] Make the entire row in the deprecations table clickable #212081
Closed
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
SoniaSanzV
added
Team:Kibana Management
|
Pinging @elastic/kibana-management (Team:Kibana Management) |
💚 Build Succeeded
Metrics [docs]Async chunks
cc @SoniaSanzV |
sabarasaba
reviewed
Mar 3, 2025
There was a problem hiding this comment.
Nice work @SoniaSanzV! I was having a look at the code and I think we could maybe improve it a bit and reduce the amount of effect hooks we are using by doing a small refactor of the existing code and I wanted to know what you think about it:
Currently in es_deprecations_table we do something like:
{visibleDeprecations.map((deprecation, index) => {
return (
<EuiTableRow data-test-subj="deprecationTableRow" key={`deprecation-row-${index}`}>
{renderTableRowCells(deprecation, mlUpgradeModeEnabled)}
</EuiTableRow>
);
})}This is a bit misleading because the renderTableRowCells actually renders rows which contain cells. So my idea would be to first rename that function to renderTableRow and then to move the EuiTableRow definition to be inside the row definition for each deprecation type and attach the click event handler to it for opening the flyout. This would make it so that each row is responsible for managing the state of their flyouts without leaking the logic outside of it. So for example the deprecation_types/indices/table_row might look something like:
<EuiTableRow
data-test-subj="deprecationTableRow"
key={`deprecation-row-${index}`}
onClick={() => setShowFlyout(true)}
>
{rowFieldNames.map((field: DeprecationTableColumns) => {
return (
<EuiTableRowCell
key={field}
truncateText={false}
data-test-subj={`reindexTableCell-${field}`}
>
<EsDeprecationsTableCells
fieldName={field}
deprecation={deprecation}
resolutionTableCell={<ReindexResolutionCell />}
/>
</EuiTableRowCell>
);
})}
</EuiTableRow>With this we would prevent tight coupling between each row type and the parent table state and also make it easier to maintain given that if we add a new row type later we would need to remember to add this custom logic for handling flyouts
…c#212037) (elastic#212059) # Backport This will backport the following commits from `main` to `8.x`: - [[Feature Flags] Remove `apm.captureError` on slow setup (elastic#212037)](elastic#212037) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Alejandro Fernández Haro","email":"alejandro.haro@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T12:20:37Z","message":"[Feature Flags] Remove `apm.captureError` on slow setup (elastic#212037)","sha":"f4d3652832c557f68890aca68df12003de7a1652","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Core","technical debt","release_note:skip","backport:prev-major","v9.1.0"],"title":"[Feature Flags] Remove `apm.captureError` on slow setup","number":212037,"url":"https://github.com/elastic/kibana/pull/212037","mergeCommit":{"message":"[Feature Flags] Remove `apm.captureError` on slow setup (elastic#212037)","sha":"f4d3652832c557f68890aca68df12003de7a1652"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212037","number":212037,"mergeCommit":{"message":"[Feature Flags] Remove `apm.captureError` on slow setup (elastic#212037)","sha":"f4d3652832c557f68890aca68df12003de7a1652"}}]}] BACKPORT--> Co-authored-by: Alejandro Fernández Haro <alejandro.haro@elastic.co>
…a new synonyms set (elastic#211002) (elastic#212063) # Backport This will backport the following commits from `main` to `8.x`: - [[Synonyms UI][Fix] Prevents overwrite by mistake when creating a new synonyms set (elastic#211002)](elastic#211002) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Efe Gürkan YALAMAN","email":"efeguerkan.yalaman@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T12:34:19Z","message":"[Synonyms UI][Fix] Prevents overwrite by mistake when creating a new synonyms set (elastic#211002)\n\n## Summary\n\n\n\nhttps://github.com/user-attachments/assets/606afc05-0edf-4f5c-8723-4a444c859ed5\n\nAdds a check to prevent accidental overwrite when creating a new\nsynonyms set.\n\n<img width=\"591\" alt=\"Screenshot 2025-02-17 at 12 29 03\"\nsrc=\"https://github.com/user-attachments/assets/fbfe542b-623e-49bf-b2e6-c8303e404789\"\n/>\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [ ] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by: Liam Thompson <32779855+leemthompo@users.noreply.github.com>","sha":"f75111a4176c3d65a41a2ea63c0139428a75f87c","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","Team:Search","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Synonyms UI][Fix] Prevents overwrite by mistake when creating a new synonyms set","number":211002,"url":"https://github.com/elastic/kibana/pull/211002","mergeCommit":{"message":"[Synonyms UI][Fix] Prevents overwrite by mistake when creating a new synonyms set (elastic#211002)\n\n## Summary\n\n\n\nhttps://github.com/user-attachments/assets/606afc05-0edf-4f5c-8723-4a444c859ed5\n\nAdds a check to prevent accidental overwrite when creating a new\nsynonyms set.\n\n<img width=\"591\" alt=\"Screenshot 2025-02-17 at 12 29 03\"\nsrc=\"https://github.com/user-attachments/assets/fbfe542b-623e-49bf-b2e6-c8303e404789\"\n/>\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [ ] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by: Liam Thompson <32779855+leemthompo@users.noreply.github.com>","sha":"f75111a4176c3d65a41a2ea63c0139428a75f87c"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211002","number":211002,"mergeCommit":{"message":"[Synonyms UI][Fix] Prevents overwrite by mistake when creating a new synonyms set (elastic#211002)\n\n## Summary\n\n\n\nhttps://github.com/user-attachments/assets/606afc05-0edf-4f5c-8723-4a444c859ed5\n\nAdds a check to prevent accidental overwrite when creating a new\nsynonyms set.\n\n<img width=\"591\" alt=\"Screenshot 2025-02-17 at 12 29 03\"\nsrc=\"https://github.com/user-attachments/assets/fbfe542b-623e-49bf-b2e6-c8303e404789\"\n/>\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [ ] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by: Liam Thompson <32779855+leemthompo@users.noreply.github.com>","sha":"f75111a4176c3d65a41a2ea63c0139428a75f87c"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Efe Gürkan YALAMAN <efeguerkan.yalaman@elastic.co>
Automated by https://buildkite.com/elastic/package-storage-infra-kibana-discover-release-branches/builds/2333 Co-authored-by: elasticmachine <elasticmachine@elastic.co>
…12009) (elastic#212070) # Backport This will backport the following commits from `main` to `8.x`: - [add system message in copy conversation JSON payload (elastic#212009)](elastic#212009) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Arturo Lidueña","email":"arturo.liduena@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T12:48:15Z","message":"add system message in copy conversation JSON payload (elastic#212009)\n\nCloses elastic#212006\n## Problem\nDue to elastic#209773 we no longer add\nthe system message to the output from the \"Copy conversation\" button.","sha":"4783925e567681d1d2f9410e18ffa24050e4b69a","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:fix","v9.0.0","Team:Obs AI Assistant","backport:version","v9.1.0","v8.19.0"],"title":"add system message in copy conversation JSON payload","number":212009,"url":"https://github.com/elastic/kibana/pull/212009","mergeCommit":{"message":"add system message in copy conversation JSON payload (elastic#212009)\n\nCloses elastic#212006\n## Problem\nDue to elastic#209773 we no longer add\nthe system message to the output from the \"Copy conversation\" button.","sha":"4783925e567681d1d2f9410e18ffa24050e4b69a"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212009","number":212009,"mergeCommit":{"message":"add system message in copy conversation JSON payload (elastic#212009)\n\nCloses elastic#212006\n## Problem\nDue to elastic#209773 we no longer add\nthe system message to the output from the \"Copy conversation\" button.","sha":"4783925e567681d1d2f9410e18ffa24050e4b69a"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Arturo Lidueña <arturo.liduena@elastic.co>
… tour. (elastic#210398) (elastic#212024) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Solution] [AI Assistant] Update copy of the citations tour. (elastic#210398)](elastic#210398) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Kenneth Kreindler","email":"42113355+KDKHD@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-02-21T09:03:53Z","message":"[Security Solution] [AI Assistant] Update copy of the citations tour. (elastic#210398)\n\n## Summary\n\nAddresses\nhttps://github.com/elastic/security-docs/issues/6485#issuecomment-2639562221\n\nThis PR updates the copy in the Citations and Anonymized values tour\naccording to the figma linked in the issue. Furthermore, the PR includes\nthe logic that disables the \"Show anonymized values\" and \"Show\ncitations\" buttons in the assistant settings menu when the conversation\ndoes not contain anonymized values or citations respectivly.\n\n### How to test new copy is correct\n<img width=\"864\" alt=\"image\"\nsrc=\"https://github.com/user-attachments/assets/22bd2671-6d06-4e68-85f5-3c10d9974a4a\"\n/>\n\n\n- Enable feature flag\n```yaml\n# kibana.dev.yml\nxpack.securitySolution.enableExperimental: ['contentReferencesEnabled']\n```\n- Clear the key\n`elasticAssistant.anonymizedValuesAndCitationsTourCompleted.v8.18` from\nyour local storage if it exists.\n- Open Security assistant\n- Ask the assistant a question about your alerts or a KB document, the\nresponse should contain anonymized values or a citation.\n- The tour with the new copy should appear (copy in screenshot above).\n*the Anonymized values and citations will not appear if the knowledge\nbase tour is currently open.\n\n### How to test assistant settings menu changes:\n<img width=\"349\" alt=\"image\"\nsrc=\"https://github.com/user-attachments/assets/58e445d7-79c0-46ca-a245-bc2ab90eeb5d\"\n/>\n\n- Enable feature flag\n```yaml\n# kibana.dev.yml\nxpack.securitySolution.enableExperimental: ['contentReferencesEnabled']\n```\n- Open Security assistant\n- In a new conversation, inside the settings menu, the \"Show anonymized\nvalues\" and \"Show citations\" menu items should be disabled because the\nconversation is empty and does not contain citations or anonymized\nvalues.\n- Ask the assistant a question about a KB document or Alert. The \"Show\ncitations\" menu item should become available if the response contains\ncitations. The \"Show anonymized values\" menu item will become available\nif the conversation contains replacements. Hovering over the disabled\nmenu item will make a tooltip appear explaining why it is disabled.\n*Sometimes the conversation will contain replacements but the\nreplacements are not used in the messages. In that case, the anonymized\nvalues menu item will not be disabled. This is a known\n[issue](https://github.com/elastic/kibana/issues/208517).\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [X] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [X]\n[Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html)\nwas added for features that require explanation or tutorials\n- [X] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [X] If a plugin configuration key changed, check if it needs to be\nallowlisted in the cloud and added to the [docker\nlist](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker)\n- [X] This was checked for breaking HTTP API changes, and any breaking\nchanges have been approved by the breaking-change committee. The\n`release_note:breaking` label should be applied in these situations.\n- [X] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [X] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"b59712fa8cc5709cb36da6914c61823411b6c1fe","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","Team:Security Generative AI","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Security Solution] [AI Assistant] Update copy of the citations tour.","number":210398,"url":"https://github.com/elastic/kibana/pull/210398","mergeCommit":{"message":"[Security Solution] [AI Assistant] Update copy of the citations tour. (elastic#210398)\n\n## Summary\n\nAddresses\nhttps://github.com/elastic/security-docs/issues/6485#issuecomment-2639562221\n\nThis PR updates the copy in the Citations and Anonymized values tour\naccording to the figma linked in the issue. Furthermore, the PR includes\nthe logic that disables the \"Show anonymized values\" and \"Show\ncitations\" buttons in the assistant settings menu when the conversation\ndoes not contain anonymized values or citations respectivly.\n\n### How to test new copy is correct\n<img width=\"864\" alt=\"image\"\nsrc=\"https://github.com/user-attachments/assets/22bd2671-6d06-4e68-85f5-3c10d9974a4a\"\n/>\n\n\n- Enable feature flag\n```yaml\n# kibana.dev.yml\nxpack.securitySolution.enableExperimental: ['contentReferencesEnabled']\n```\n- Clear the key\n`elasticAssistant.anonymizedValuesAndCitationsTourCompleted.v8.18` from\nyour local storage if it exists.\n- Open Security assistant\n- Ask the assistant a question about your alerts or a KB document, the\nresponse should contain anonymized values or a citation.\n- The tour with the new copy should appear (copy in screenshot above).\n*the Anonymized values and citations will not appear if the knowledge\nbase tour is currently open.\n\n### How to test assistant settings menu changes:\n<img width=\"349\" alt=\"image\"\nsrc=\"https://github.com/user-attachments/assets/58e445d7-79c0-46ca-a245-bc2ab90eeb5d\"\n/>\n\n- Enable feature flag\n```yaml\n# kibana.dev.yml\nxpack.securitySolution.enableExperimental: ['contentReferencesEnabled']\n```\n- Open Security assistant\n- In a new conversation, inside the settings menu, the \"Show anonymized\nvalues\" and \"Show citations\" menu items should be disabled because the\nconversation is empty and does not contain citations or anonymized\nvalues.\n- Ask the assistant a question about a KB document or Alert. The \"Show\ncitations\" menu item should become available if the response contains\ncitations. The \"Show anonymized values\" menu item will become available\nif the conversation contains replacements. Hovering over the disabled\nmenu item will make a tooltip appear explaining why it is disabled.\n*Sometimes the conversation will contain replacements but the\nreplacements are not used in the messages. In that case, the anonymized\nvalues menu item will not be disabled. This is a known\n[issue](https://github.com/elastic/kibana/issues/208517).\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [X] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [X]\n[Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html)\nwas added for features that require explanation or tutorials\n- [X] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [X] If a plugin configuration key changed, check if it needs to be\nallowlisted in the cloud and added to the [docker\nlist](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker)\n- [X] This was checked for breaking HTTP API changes, and any breaking\nchanges have been approved by the breaking-change committee. The\n`release_note:breaking` label should be applied in these situations.\n- [X] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [X] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"b59712fa8cc5709cb36da6914c61823411b6c1fe"}},"sourceBranch":"main","suggestedTargetBranches":["8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"url":"https://github.com/elastic/kibana/pull/212018","number":212018,"state":"OPEN"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/210398","number":210398,"mergeCommit":{"message":"[Security Solution] [AI Assistant] Update copy of the citations tour. (elastic#210398)\n\n## Summary\n\nAddresses\nhttps://github.com/elastic/security-docs/issues/6485#issuecomment-2639562221\n\nThis PR updates the copy in the Citations and Anonymized values tour\naccording to the figma linked in the issue. Furthermore, the PR includes\nthe logic that disables the \"Show anonymized values\" and \"Show\ncitations\" buttons in the assistant settings menu when the conversation\ndoes not contain anonymized values or citations respectivly.\n\n### How to test new copy is correct\n<img width=\"864\" alt=\"image\"\nsrc=\"https://github.com/user-attachments/assets/22bd2671-6d06-4e68-85f5-3c10d9974a4a\"\n/>\n\n\n- Enable feature flag\n```yaml\n# kibana.dev.yml\nxpack.securitySolution.enableExperimental: ['contentReferencesEnabled']\n```\n- Clear the key\n`elasticAssistant.anonymizedValuesAndCitationsTourCompleted.v8.18` from\nyour local storage if it exists.\n- Open Security assistant\n- Ask the assistant a question about your alerts or a KB document, the\nresponse should contain anonymized values or a citation.\n- The tour with the new copy should appear (copy in screenshot above).\n*the Anonymized values and citations will not appear if the knowledge\nbase tour is currently open.\n\n### How to test assistant settings menu changes:\n<img width=\"349\" alt=\"image\"\nsrc=\"https://github.com/user-attachments/assets/58e445d7-79c0-46ca-a245-bc2ab90eeb5d\"\n/>\n\n- Enable feature flag\n```yaml\n# kibana.dev.yml\nxpack.securitySolution.enableExperimental: ['contentReferencesEnabled']\n```\n- Open Security assistant\n- In a new conversation, inside the settings menu, the \"Show anonymized\nvalues\" and \"Show citations\" menu items should be disabled because the\nconversation is empty and does not contain citations or anonymized\nvalues.\n- Ask the assistant a question about a KB document or Alert. The \"Show\ncitations\" menu item should become available if the response contains\ncitations. The \"Show anonymized values\" menu item will become available\nif the conversation contains replacements. Hovering over the disabled\nmenu item will make a tooltip appear explaining why it is disabled.\n*Sometimes the conversation will contain replacements but the\nreplacements are not used in the messages. In that case, the anonymized\nvalues menu item will not be disabled. This is a known\n[issue](https://github.com/elastic/kibana/issues/208517).\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [X] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [X]\n[Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html)\nwas added for features that require explanation or tutorials\n- [X] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [X] If a plugin configuration key changed, check if it needs to be\nallowlisted in the cloud and added to the [docker\nlist](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker)\n- [X] This was checked for breaking HTTP API changes, and any breaking\nchanges have been approved by the breaking-change committee. The\n`release_note:breaking` label should be applied in these situations.\n- [X] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [X] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"b59712fa8cc5709cb36da6914c61823411b6c1fe"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT-->
…2054) (elastic#212085) # Backport This will backport the following commits from `main` to `8.x`: - [[Fleet] fix `prerelease:boolean` in package_service (elastic#212054)](elastic#212054) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Julia Bardi","email":"90178898+juliaElastic@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-02-21T13:51:21Z","message":"[Fleet] fix `prerelease:boolean` in package_service (elastic#212054)\n\nUse `boolean` instead of `false` in `getPackages` to support querying\nprerelease packages.","sha":"dbfb433ec28a080879c26232c7a8ea516efd082f","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Team:Fleet","backport:prev-major","v9.1.0"],"title":"[Fleet] fix `prerelease:boolean` in package_service","number":212054,"url":"https://github.com/elastic/kibana/pull/212054","mergeCommit":{"message":"[Fleet] fix `prerelease:boolean` in package_service (elastic#212054)\n\nUse `boolean` instead of `false` in `getPackages` to support querying\nprerelease packages.","sha":"dbfb433ec28a080879c26232c7a8ea516efd082f"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212054","number":212054,"mergeCommit":{"message":"[Fleet] fix `prerelease:boolean` in package_service (elastic#212054)\n\nUse `boolean` instead of `false` in `getPackages` to support querying\nprerelease packages.","sha":"dbfb433ec28a080879c26232c7a8ea516efd082f"}}]}] BACKPORT--> Co-authored-by: Julia Bardi <90178898+juliaElastic@users.noreply.github.com>
…ink service instead of hardcoded URLs (elastic#212051) (elastic#212101) # Backport This will backport the following commits from `main` to `8.x`: - [[ObsUX][APM][Profiling] Update documentation links to use doc link service instead of hardcoded URLs (elastic#212051)](elastic#212051) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Sergi Romeu","email":"sergi.romeu@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T14:52:40Z","message":"[ObsUX][APM][Profiling] Update documentation links to use doc link service instead of hardcoded URLs (elastic#212051)\n\n## Summary\n\nCloses elastic#208895\n\nThis PR updates documentation links to use the doc link service, to\navoid hardcoding URLs","sha":"6a6f0e70b3e91162d30e2ad190d8dea5eb36c263","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","apm","backport:prev-minor","Team:obs-ux-infra_services","Feature:UniversalProfiling","v9.1.0"],"title":"[ObsUX][APM][Profiling] Update documentation links to use doc link service instead of hardcoded URLs ","number":212051,"url":"https://github.com/elastic/kibana/pull/212051","mergeCommit":{"message":"[ObsUX][APM][Profiling] Update documentation links to use doc link service instead of hardcoded URLs (elastic#212051)\n\n## Summary\n\nCloses elastic#208895\n\nThis PR updates documentation links to use the doc link service, to\navoid hardcoding URLs","sha":"6a6f0e70b3e91162d30e2ad190d8dea5eb36c263"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212051","number":212051,"mergeCommit":{"message":"[ObsUX][APM][Profiling] Update documentation links to use doc link service instead of hardcoded URLs (elastic#212051)\n\n## Summary\n\nCloses elastic#208895\n\nThis PR updates documentation links to use the doc link service, to\navoid hardcoding URLs","sha":"6a6f0e70b3e91162d30e2ad190d8dea5eb36c263"}}]}] BACKPORT-->
…lastic#212102) # Backport This will backport the following commits from `main` to `8.x`: - [[Dashboard Navigation] Swap SASS for Emotion (elastic#211124)](elastic#211124) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Hannah Mudge","email":"Heenawter@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-02-21T15:07:23Z","message":"[Dashboard Navigation] Swap SASS for Emotion (elastic#211124)\n\nPart of https://github.com/elastic/kibana/issues/207852\n\n## Summary\n\nThis PR migrates all `*.scss` files in the Links plugin to Emotion.\nTesting should simply verify that this PR does not introduce any style\nchanges.\n\n\n### Checklist\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenario\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nAny risks associated with this PR are purely cosmetic, since it contains\nexclusively style-related changes.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"85f4f4d5b4bdd2a91f1138cd5f660c88d729a3c8","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Presentation","loe:small","release_note:skip","impact:high","Project:Dashboard Navigation","backport:version","v9.1.0","v8.19.0"],"title":"[Dashboard Navigation] Swap SASS for Emotion","number":211124,"url":"https://github.com/elastic/kibana/pull/211124","mergeCommit":{"message":"[Dashboard Navigation] Swap SASS for Emotion (elastic#211124)\n\nPart of https://github.com/elastic/kibana/issues/207852\n\n## Summary\n\nThis PR migrates all `*.scss` files in the Links plugin to Emotion.\nTesting should simply verify that this PR does not introduce any style\nchanges.\n\n\n### Checklist\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenario\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nAny risks associated with this PR are purely cosmetic, since it contains\nexclusively style-related changes.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"85f4f4d5b4bdd2a91f1138cd5f660c88d729a3c8"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211124","number":211124,"mergeCommit":{"message":"[Dashboard Navigation] Swap SASS for Emotion (elastic#211124)\n\nPart of https://github.com/elastic/kibana/issues/207852\n\n## Summary\n\nThis PR migrates all `*.scss` files in the Links plugin to Emotion.\nTesting should simply verify that this PR does not introduce any style\nchanges.\n\n\n### Checklist\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenario\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nAny risks associated with this PR are purely cosmetic, since it contains\nexclusively style-related changes.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"85f4f4d5b4bdd2a91f1138cd5f660c88d729a3c8"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Hannah Mudge <Heenawter@users.noreply.github.com>
# Backport This will backport the following commits from `main` to `8.x`: - [SKA: Relocate core-test-helpers (elastic#212029)](elastic#212029) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Gerard Soldevila","email":"gerard.soldevila@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T13:38:38Z","message":"SKA: Relocate core-test-helpers (elastic#212029)\n\n## Summary\n\nThese where the only packages under `src/dev/packages`.\nThe goal long term is to refactor the code under `src/dev` and to\nmigrate it to one (or multiple) packages.\nThus, we're moving them to `src/core/test-helpers/`, which already\nexists and contains a bunch of test-helpers.\n\n#### 2 packages(s) are going to be relocated:\n\n| Id | Target folder |\n| -- | ------------- |\n| `@kbn/core-test-helpers-kbn-server` |\n`src/core/test-helpers/kbn-server` |\n| `@kbn/core-test-helpers-model-versions` |\n`src/core/test-helpers/model-versions` |\n\n\n<details >\n<summary>Updated references</summary>\n\n```\n./.github/codeql/codeql-config.yml\n./package.json\n./packages/kbn-ts-projects/config-paths.json\n./src/core/system/tsconfig.type_check.json\n./src/core/test-helpers/kbn-server/jest.config.js\n./src/core/test-helpers/model-versions/jest.config.js\n./src/dev/tsconfig.type_check.json\n./src/platform/packages/private/kbn-repo-packages/package-map.json\n./src/plugins/kibana_usage_collection/tsconfig.type_check.json\n./src/plugins/usage_collection/tsconfig.type_check.json\n./tsconfig.base.json\n./tsconfig.base.type_check.json\n./tsconfig.refs.json\n./x-pack/platform/plugins/shared/fleet/tsconfig.type_check.json\n./x-pack/platform/plugins/shared/spaces/tsconfig.type_check.json\n./x-pack/plugins/actions/tsconfig.type_check.json\n./x-pack/plugins/alerting/tsconfig.type_check.json\n./x-pack/plugins/task_manager/tsconfig.type_check.json\n./yarn.lock\n.github/CODEOWNERS\n```\n\n</details><details >\n<summary>Updated relative paths</summary>\n\n```\nsrc/core/test-helpers/kbn-server/jest.config.js:12\nsrc/core/test-helpers/kbn-server/tsconfig.json:2\nsrc/core/test-helpers/model-versions/jest.config.js:12\nsrc/core/test-helpers/model-versions/tsconfig.json:2\n```\n\n</details>","sha":"cff1747a76162e81e1baffb42840915ab7f57ed9","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Core","release_note:skip","v9.0.0","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"SKA: Relocate core-test-helpers","number":212029,"url":"https://github.com/elastic/kibana/pull/212029","mergeCommit":{"message":"SKA: Relocate core-test-helpers (elastic#212029)\n\n## Summary\n\nThese where the only packages under `src/dev/packages`.\nThe goal long term is to refactor the code under `src/dev` and to\nmigrate it to one (or multiple) packages.\nThus, we're moving them to `src/core/test-helpers/`, which already\nexists and contains a bunch of test-helpers.\n\n#### 2 packages(s) are going to be relocated:\n\n| Id | Target folder |\n| -- | ------------- |\n| `@kbn/core-test-helpers-kbn-server` |\n`src/core/test-helpers/kbn-server` |\n| `@kbn/core-test-helpers-model-versions` |\n`src/core/test-helpers/model-versions` |\n\n\n<details >\n<summary>Updated references</summary>\n\n```\n./.github/codeql/codeql-config.yml\n./package.json\n./packages/kbn-ts-projects/config-paths.json\n./src/core/system/tsconfig.type_check.json\n./src/core/test-helpers/kbn-server/jest.config.js\n./src/core/test-helpers/model-versions/jest.config.js\n./src/dev/tsconfig.type_check.json\n./src/platform/packages/private/kbn-repo-packages/package-map.json\n./src/plugins/kibana_usage_collection/tsconfig.type_check.json\n./src/plugins/usage_collection/tsconfig.type_check.json\n./tsconfig.base.json\n./tsconfig.base.type_check.json\n./tsconfig.refs.json\n./x-pack/platform/plugins/shared/fleet/tsconfig.type_check.json\n./x-pack/platform/plugins/shared/spaces/tsconfig.type_check.json\n./x-pack/plugins/actions/tsconfig.type_check.json\n./x-pack/plugins/alerting/tsconfig.type_check.json\n./x-pack/plugins/task_manager/tsconfig.type_check.json\n./yarn.lock\n.github/CODEOWNERS\n```\n\n</details><details >\n<summary>Updated relative paths</summary>\n\n```\nsrc/core/test-helpers/kbn-server/jest.config.js:12\nsrc/core/test-helpers/kbn-server/tsconfig.json:2\nsrc/core/test-helpers/model-versions/jest.config.js:12\nsrc/core/test-helpers/model-versions/tsconfig.json:2\n```\n\n</details>","sha":"cff1747a76162e81e1baffb42840915ab7f57ed9"}},"sourceBranch":"main","suggestedTargetBranches":["8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"url":"https://github.com/elastic/kibana/pull/212080","number":212080,"state":"OPEN"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212029","number":212029,"mergeCommit":{"message":"SKA: Relocate core-test-helpers (elastic#212029)\n\n## Summary\n\nThese where the only packages under `src/dev/packages`.\nThe goal long term is to refactor the code under `src/dev` and to\nmigrate it to one (or multiple) packages.\nThus, we're moving them to `src/core/test-helpers/`, which already\nexists and contains a bunch of test-helpers.\n\n#### 2 packages(s) are going to be relocated:\n\n| Id | Target folder |\n| -- | ------------- |\n| `@kbn/core-test-helpers-kbn-server` |\n`src/core/test-helpers/kbn-server` |\n| `@kbn/core-test-helpers-model-versions` |\n`src/core/test-helpers/model-versions` |\n\n\n<details >\n<summary>Updated references</summary>\n\n```\n./.github/codeql/codeql-config.yml\n./package.json\n./packages/kbn-ts-projects/config-paths.json\n./src/core/system/tsconfig.type_check.json\n./src/core/test-helpers/kbn-server/jest.config.js\n./src/core/test-helpers/model-versions/jest.config.js\n./src/dev/tsconfig.type_check.json\n./src/platform/packages/private/kbn-repo-packages/package-map.json\n./src/plugins/kibana_usage_collection/tsconfig.type_check.json\n./src/plugins/usage_collection/tsconfig.type_check.json\n./tsconfig.base.json\n./tsconfig.base.type_check.json\n./tsconfig.refs.json\n./x-pack/platform/plugins/shared/fleet/tsconfig.type_check.json\n./x-pack/platform/plugins/shared/spaces/tsconfig.type_check.json\n./x-pack/plugins/actions/tsconfig.type_check.json\n./x-pack/plugins/alerting/tsconfig.type_check.json\n./x-pack/plugins/task_manager/tsconfig.type_check.json\n./yarn.lock\n.github/CODEOWNERS\n```\n\n</details><details >\n<summary>Updated relative paths</summary>\n\n```\nsrc/core/test-helpers/kbn-server/jest.config.js:12\nsrc/core/test-helpers/kbn-server/tsconfig.json:2\nsrc/core/test-helpers/model-versions/jest.config.js:12\nsrc/core/test-helpers/model-versions/tsconfig.json:2\n```\n\n</details>","sha":"cff1747a76162e81e1baffb42840915ab7f57ed9"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT-->
…erless mode (elastic#211670) (elastic#212111) # Backport This will backport the following commits from `main` to `8.x`: - [[Synthtrace] Improve URL discovery when running locally in Serverless mode (elastic#211670)](elastic#211670) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Abdul Wahab Zahid","email":"awahab07@yahoo.com"},"sourceCommit":{"committedDate":"2025-02-21T15:58:07Z","message":"[Synthtrace] Improve URL discovery when running locally in Serverless mode (elastic#211670)\n\n## Summary\n\nThis PR improves how **Synthtrace** resolves the Kibana URL when only\n`--target` (Elasticsearch) is provided or when neither `--target` nor\n`--kibana` is specified. The CLI now attempts to **automatically\ndiscover** the appropriate URLs based on the provided arguments.\n\nSome adjustments were made to improve this discovery process, especially\nwhen running **locally in Serverless mode**, where Kibana may be using\n`http`, while Elasticsearch (ES) is on `https`. Additionally,\nself-signed certificates do not work with the IP address `127.0.0.1`, so\nthis PR defaults to `localhost` and warns the user if `127.0.0.1` is\ndetected in Serverless mode.\n\n### **Improvements**\n- If either of `--target` or `--kibana` or neither provided, the CLI\nattempts to **discovers the URLs** dynamically now in both Stateful and\nServerless.\n- Defaults to `localhost` instead of `127.0.0.1` to avoid SSL\ncertificate issues.\n- Provides a **clear error message and hint** when Kibana and ES use\ndifferent protocols (http vs https) and either or both are unreachable.\n\n### **Expected Behavior After This PR**\nThese commands should now work **seamlessly** in both **local Stateful**\nand **Serverless** modes:\n\n```sh\n✗ node scripts/synthtrace simple_logs\n```\n\nFor **Serverless mode**, these also work:\n\n```sh\n✗ node scripts/synthtrace simple_logs --kibana=http://elastic_serverless:changeme@localhost:5601\n```\n\n```sh\n✗ node scripts/synthtrace simple_logs --target=https://elastic_serverless:changeme@localhost:9200 --kibana=http://elastic_serverless:changeme@localhost:5601\n```\n\n### **(Side Note) Serverless Kibana with SSL Disabled**\nHowever, the following command will **fail** with an error message if\nKibana is running without SSL, while Elasticsearch is using `https`:\n\n```sh\n✗ node scripts/synthtrace simple_logs --target=https://elastic_serverless:changeme@localhost:9200\n```\n\n#### **Error Output:**\n```sh\nLoading scenario from kibana/packages/kbn-apm-synthtrace/src/scenarios/simple_logs.ts\nError: Could not connect to Kibana. request to https://elastic_serverless:changeme@localhost:5601/ failed, reason: write EPROTO 400882F501000000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:355:\n\nIf your Kibana URL differs, consider using the '--kibana' parameter to customize it.\n```\n\n**Solution:** \nIf you must have to provide `--target` (non defaults), also provide\n`--kibana` or start Kibana with SSL enabled.\n```sh\n✗ yarn start --serverless=oblt --ssl\n```","sha":"cb71dff86e042a088aa13cc11f90b0673438b365","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","ci:project-deploy-observability","Team:obs-ux-infra_services","backport:version","v9.1.0","v8.19.0"],"title":"[Synthtrace] Improve URL discovery when running locally in Serverless mode","number":211670,"url":"https://github.com/elastic/kibana/pull/211670","mergeCommit":{"message":"[Synthtrace] Improve URL discovery when running locally in Serverless mode (elastic#211670)\n\n## Summary\n\nThis PR improves how **Synthtrace** resolves the Kibana URL when only\n`--target` (Elasticsearch) is provided or when neither `--target` nor\n`--kibana` is specified. The CLI now attempts to **automatically\ndiscover** the appropriate URLs based on the provided arguments.\n\nSome adjustments were made to improve this discovery process, especially\nwhen running **locally in Serverless mode**, where Kibana may be using\n`http`, while Elasticsearch (ES) is on `https`. Additionally,\nself-signed certificates do not work with the IP address `127.0.0.1`, so\nthis PR defaults to `localhost` and warns the user if `127.0.0.1` is\ndetected in Serverless mode.\n\n### **Improvements**\n- If either of `--target` or `--kibana` or neither provided, the CLI\nattempts to **discovers the URLs** dynamically now in both Stateful and\nServerless.\n- Defaults to `localhost` instead of `127.0.0.1` to avoid SSL\ncertificate issues.\n- Provides a **clear error message and hint** when Kibana and ES use\ndifferent protocols (http vs https) and either or both are unreachable.\n\n### **Expected Behavior After This PR**\nThese commands should now work **seamlessly** in both **local Stateful**\nand **Serverless** modes:\n\n```sh\n✗ node scripts/synthtrace simple_logs\n```\n\nFor **Serverless mode**, these also work:\n\n```sh\n✗ node scripts/synthtrace simple_logs --kibana=http://elastic_serverless:changeme@localhost:5601\n```\n\n```sh\n✗ node scripts/synthtrace simple_logs --target=https://elastic_serverless:changeme@localhost:9200 --kibana=http://elastic_serverless:changeme@localhost:5601\n```\n\n### **(Side Note) Serverless Kibana with SSL Disabled**\nHowever, the following command will **fail** with an error message if\nKibana is running without SSL, while Elasticsearch is using `https`:\n\n```sh\n✗ node scripts/synthtrace simple_logs --target=https://elastic_serverless:changeme@localhost:9200\n```\n\n#### **Error Output:**\n```sh\nLoading scenario from kibana/packages/kbn-apm-synthtrace/src/scenarios/simple_logs.ts\nError: Could not connect to Kibana. request to https://elastic_serverless:changeme@localhost:5601/ failed, reason: write EPROTO 400882F501000000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:355:\n\nIf your Kibana URL differs, consider using the '--kibana' parameter to customize it.\n```\n\n**Solution:** \nIf you must have to provide `--target` (non defaults), also provide\n`--kibana` or start Kibana with SSL enabled.\n```sh\n✗ yarn start --serverless=oblt --ssl\n```","sha":"cb71dff86e042a088aa13cc11f90b0673438b365"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211670","number":211670,"mergeCommit":{"message":"[Synthtrace] Improve URL discovery when running locally in Serverless mode (elastic#211670)\n\n## Summary\n\nThis PR improves how **Synthtrace** resolves the Kibana URL when only\n`--target` (Elasticsearch) is provided or when neither `--target` nor\n`--kibana` is specified. The CLI now attempts to **automatically\ndiscover** the appropriate URLs based on the provided arguments.\n\nSome adjustments were made to improve this discovery process, especially\nwhen running **locally in Serverless mode**, where Kibana may be using\n`http`, while Elasticsearch (ES) is on `https`. Additionally,\nself-signed certificates do not work with the IP address `127.0.0.1`, so\nthis PR defaults to `localhost` and warns the user if `127.0.0.1` is\ndetected in Serverless mode.\n\n### **Improvements**\n- If either of `--target` or `--kibana` or neither provided, the CLI\nattempts to **discovers the URLs** dynamically now in both Stateful and\nServerless.\n- Defaults to `localhost` instead of `127.0.0.1` to avoid SSL\ncertificate issues.\n- Provides a **clear error message and hint** when Kibana and ES use\ndifferent protocols (http vs https) and either or both are unreachable.\n\n### **Expected Behavior After This PR**\nThese commands should now work **seamlessly** in both **local Stateful**\nand **Serverless** modes:\n\n```sh\n✗ node scripts/synthtrace simple_logs\n```\n\nFor **Serverless mode**, these also work:\n\n```sh\n✗ node scripts/synthtrace simple_logs --kibana=http://elastic_serverless:changeme@localhost:5601\n```\n\n```sh\n✗ node scripts/synthtrace simple_logs --target=https://elastic_serverless:changeme@localhost:9200 --kibana=http://elastic_serverless:changeme@localhost:5601\n```\n\n### **(Side Note) Serverless Kibana with SSL Disabled**\nHowever, the following command will **fail** with an error message if\nKibana is running without SSL, while Elasticsearch is using `https`:\n\n```sh\n✗ node scripts/synthtrace simple_logs --target=https://elastic_serverless:changeme@localhost:9200\n```\n\n#### **Error Output:**\n```sh\nLoading scenario from kibana/packages/kbn-apm-synthtrace/src/scenarios/simple_logs.ts\nError: Could not connect to Kibana. request to https://elastic_serverless:changeme@localhost:5601/ failed, reason: write EPROTO 400882F501000000:error:0A00010B:SSL routines:ssl3_get_record:wrong version number:../deps/openssl/openssl/ssl/record/ssl3_record.c:355:\n\nIf your Kibana URL differs, consider using the '--kibana' parameter to customize it.\n```\n\n**Solution:** \nIf you must have to provide `--target` (non defaults), also provide\n`--kibana` or start Kibana with SSL enabled.\n```sh\n✗ yarn start --serverless=oblt --ssl\n```","sha":"cb71dff86e042a088aa13cc11f90b0673438b365"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Abdul Wahab Zahid <awahab07@yahoo.com>
…#212072) (elastic#212108) # Backport This will backport the following commits from `main` to `8.x`: - [[scout] disable reporter for config validation command (elastic#212072)](elastic#212072) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Dzmitry Lemechko","email":"dzmitry.lemechko@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T15:42:32Z","message":"[scout] disable reporter for config validation command (elastic#212072)\n\n## Summary\n\nIn elastic#211918 I added config validation check to skip run if there are no\ntests in playwright config.\n\nIt turned out that Playwright init reporters even when `--list` command\nis passed and no tests are executed, that lead to Scout reports being\nloaded and then causing reporter error when the other command runs the\ntests:\n\n```\n proc [playwright] info Calling save with destination: /Users/dmle/github/kibana/.scout/reports/scout-playwright-9518363d47816953\n proc [playwright] ERROR Error: Save destination path '/Users/dmle/github/kibana/.scout/reports/scout-playwright-9518363d47816953' already exists\n proc [playwright] at ScoutEventsReport.save (/Users/dmle/github/kibana/packages/kbn-scout-reporting/src/reporting/report/events/report.ts:56:13)\n proc [playwright] at ScoutPlaywrightReporter.onEnd (/Users/dmle/github/kibana/packages/kbn-scout-reporting/src/reporting/playwright/events/playwright_reporter.ts:277:19)\n proc [playwright] at ReporterV2Wrapper.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/reporterV2.js:91:165)\n proc [playwright] at /Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:71:117\n proc [playwright] at wrapAsync (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:112:18)\n proc [playwright] at Multiplexer.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:69:31)\n proc [playwright] at InternalReporter.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/internalReporter.js:77:12)\n proc [playwright] at finishTaskRun (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/tasks.js:90:26)\n proc [playwright] at runTasks (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/tasks.js:73:10)\n proc [playwright] at Runner.runAllTests (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/runner.js:72:20)\n proc [playwright] at runTests (/Users/dmle/github/kibana/node_modules/playwright/lib/program.js:211:18)\n proc [playwright] at t.<anonymous> (/Users/dmle/github/kibana/node_modules/playwright/lib/program.js:54:7)\n```\n\nThe simplest solution is to explicitly disable Scout reporter for config\nvalidation command.","sha":"f5a1ead8cf053168cd94fdc45facaca8f2dbc35a","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:QA","release_note:skip","v9.0.0","backport:version","test:scout","v9.1.0","v8.19.0"],"title":"[scout] disable reporter for config validation command","number":212072,"url":"https://github.com/elastic/kibana/pull/212072","mergeCommit":{"message":"[scout] disable reporter for config validation command (elastic#212072)\n\n## Summary\n\nIn elastic#211918 I added config validation check to skip run if there are no\ntests in playwright config.\n\nIt turned out that Playwright init reporters even when `--list` command\nis passed and no tests are executed, that lead to Scout reports being\nloaded and then causing reporter error when the other command runs the\ntests:\n\n```\n proc [playwright] info Calling save with destination: /Users/dmle/github/kibana/.scout/reports/scout-playwright-9518363d47816953\n proc [playwright] ERROR Error: Save destination path '/Users/dmle/github/kibana/.scout/reports/scout-playwright-9518363d47816953' already exists\n proc [playwright] at ScoutEventsReport.save (/Users/dmle/github/kibana/packages/kbn-scout-reporting/src/reporting/report/events/report.ts:56:13)\n proc [playwright] at ScoutPlaywrightReporter.onEnd (/Users/dmle/github/kibana/packages/kbn-scout-reporting/src/reporting/playwright/events/playwright_reporter.ts:277:19)\n proc [playwright] at ReporterV2Wrapper.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/reporterV2.js:91:165)\n proc [playwright] at /Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:71:117\n proc [playwright] at wrapAsync (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:112:18)\n proc [playwright] at Multiplexer.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:69:31)\n proc [playwright] at InternalReporter.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/internalReporter.js:77:12)\n proc [playwright] at finishTaskRun (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/tasks.js:90:26)\n proc [playwright] at runTasks (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/tasks.js:73:10)\n proc [playwright] at Runner.runAllTests (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/runner.js:72:20)\n proc [playwright] at runTests (/Users/dmle/github/kibana/node_modules/playwright/lib/program.js:211:18)\n proc [playwright] at t.<anonymous> (/Users/dmle/github/kibana/node_modules/playwright/lib/program.js:54:7)\n```\n\nThe simplest solution is to explicitly disable Scout reporter for config\nvalidation command.","sha":"f5a1ead8cf053168cd94fdc45facaca8f2dbc35a"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212072","number":212072,"mergeCommit":{"message":"[scout] disable reporter for config validation command (elastic#212072)\n\n## Summary\n\nIn elastic#211918 I added config validation check to skip run if there are no\ntests in playwright config.\n\nIt turned out that Playwright init reporters even when `--list` command\nis passed and no tests are executed, that lead to Scout reports being\nloaded and then causing reporter error when the other command runs the\ntests:\n\n```\n proc [playwright] info Calling save with destination: /Users/dmle/github/kibana/.scout/reports/scout-playwright-9518363d47816953\n proc [playwright] ERROR Error: Save destination path '/Users/dmle/github/kibana/.scout/reports/scout-playwright-9518363d47816953' already exists\n proc [playwright] at ScoutEventsReport.save (/Users/dmle/github/kibana/packages/kbn-scout-reporting/src/reporting/report/events/report.ts:56:13)\n proc [playwright] at ScoutPlaywrightReporter.onEnd (/Users/dmle/github/kibana/packages/kbn-scout-reporting/src/reporting/playwright/events/playwright_reporter.ts:277:19)\n proc [playwright] at ReporterV2Wrapper.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/reporterV2.js:91:165)\n proc [playwright] at /Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:71:117\n proc [playwright] at wrapAsync (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:112:18)\n proc [playwright] at Multiplexer.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/multiplexer.js:69:31)\n proc [playwright] at InternalReporter.onEnd (/Users/dmle/github/kibana/node_modules/playwright/lib/reporters/internalReporter.js:77:12)\n proc [playwright] at finishTaskRun (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/tasks.js:90:26)\n proc [playwright] at runTasks (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/tasks.js:73:10)\n proc [playwright] at Runner.runAllTests (/Users/dmle/github/kibana/node_modules/playwright/lib/runner/runner.js:72:20)\n proc [playwright] at runTests (/Users/dmle/github/kibana/node_modules/playwright/lib/program.js:211:18)\n proc [playwright] at t.<anonymous> (/Users/dmle/github/kibana/node_modules/playwright/lib/program.js:54:7)\n```\n\nThe simplest solution is to explicitly disable Scout reporter for config\nvalidation command.","sha":"f5a1ead8cf053168cd94fdc45facaca8f2dbc35a"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Dzmitry Lemechko <dzmitry.lemechko@elastic.co>
…o 0801a43 (8.x) (elastic#212066) This PR contains the following updates: | Package | Update | Change | |---|---|---| | docker.elastic.co/wolfi/chainguard-base | digest | `d74b1fd` -> `0801a43` | --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://redirect.github.com/renovatebot/renovate). <!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiIzOS4xMDcuMCIsInVwZGF0ZWRJblZlciI6IjM5LjEwNy4wIiwidGFyZ2V0QnJhbmNoIjoiOC54IiwibGFiZWxzIjpbIlRlYW06T3BlcmF0aW9ucyIsImJhY2twb3J0OnNraXAiLCJyZWxlYXNlX25vdGU6c2tpcCJdfQ==--> Co-authored-by: elastic-renovate-prod[bot] <174716857+elastic-renovate-prod[bot]@users.noreply.github.com>
…he Siem migrations (elastic#211202) (elastic#212118) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Solution] - Feat Add `Severity` and `risk_score` to the Siem migrations (elastic#211202)](elastic#211202) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Jatin Kathuria","email":"jatin.kathuria@elastic.co"},"sourceCommit":{"committedDate":"2025-02-21T16:24:44Z","message":"[Security Solution] - Feat Add `Severity` and `risk_score` to the Siem migrations (elastic#211202)\n\n## Summary\n\nHandles below Features:\n- https://github.com/elastic/security-team/issues/11837\n\n\nThis PR adds `risk_score` and `severity` based on below 3 rules\n- `Rule Severity` should be mapped to Splunk's `alert.severity`.\n- `Rule Severity` values should be mapped as mentioned in below section\nMapping Elastic Security Rule's Severity with Splunk's Severity\n\n> \n> |Splunk's Severity| Elastic Rule Severity |\n> |---|---|\n> |1- Info|Low|\n> |2-Low|Low|\n> |3-Medium|Medium|\n> |4-High|High|\n> |5-Critical|Critical|\n\n- Elastic Security Rule's `Risk Score` derived from the `Severity` of\nthe Rulet based on below mapping(\n[Source](https://www.elastic.co/guide/en/security/current/rules-ui-create.html#rule-ui-basic-params)\n)\n\n\n\n\n\n## Desk Testing\n\n\n[splunk_rules_test_severity.json](https://github.com/user-attachments/files/18825855/splunk_rules_test_severity.json)\n\n\n1. Use the above attached test file which has the `alert.severity`\nexported from Splunk.\n2. Check the Severity of the translated rule should match the mapping\ngiven above. Expect results like below :\n\n<img width=\"1474\" alt=\"Screenshot 2025-02-17 at 14 19 23\"\nsrc=\"https://github.com/user-attachments/assets/a8459c71-3208-480e-8049-05293a0a3d2a\"\n/>\n\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"74ef9fcdee2086bf2c48a35c5c15fb0997fc41dd","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","Team:Threat Hunting","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Security Solution] - Feat Add `Severity` and `risk_score` to the Siem migrations","number":211202,"url":"https://github.com/elastic/kibana/pull/211202","mergeCommit":{"message":"[Security Solution] - Feat Add `Severity` and `risk_score` to the Siem migrations (elastic#211202)\n\n## Summary\n\nHandles below Features:\n- https://github.com/elastic/security-team/issues/11837\n\n\nThis PR adds `risk_score` and `severity` based on below 3 rules\n- `Rule Severity` should be mapped to Splunk's `alert.severity`.\n- `Rule Severity` values should be mapped as mentioned in below section\nMapping Elastic Security Rule's Severity with Splunk's Severity\n\n> \n> |Splunk's Severity| Elastic Rule Severity |\n> |---|---|\n> |1- Info|Low|\n> |2-Low|Low|\n> |3-Medium|Medium|\n> |4-High|High|\n> |5-Critical|Critical|\n\n- Elastic Security Rule's `Risk Score` derived from the `Severity` of\nthe Rulet based on below mapping(\n[Source](https://www.elastic.co/guide/en/security/current/rules-ui-create.html#rule-ui-basic-params)\n)\n\n\n\n\n\n## Desk Testing\n\n\n[splunk_rules_test_severity.json](https://github.com/user-attachments/files/18825855/splunk_rules_test_severity.json)\n\n\n1. Use the above attached test file which has the `alert.severity`\nexported from Splunk.\n2. Check the Severity of the translated rule should match the mapping\ngiven above. Expect results like below :\n\n<img width=\"1474\" alt=\"Screenshot 2025-02-17 at 14 19 23\"\nsrc=\"https://github.com/user-attachments/assets/a8459c71-3208-480e-8049-05293a0a3d2a\"\n/>\n\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"74ef9fcdee2086bf2c48a35c5c15fb0997fc41dd"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211202","number":211202,"mergeCommit":{"message":"[Security Solution] - Feat Add `Severity` and `risk_score` to the Siem migrations (elastic#211202)\n\n## Summary\n\nHandles below Features:\n- https://github.com/elastic/security-team/issues/11837\n\n\nThis PR adds `risk_score` and `severity` based on below 3 rules\n- `Rule Severity` should be mapped to Splunk's `alert.severity`.\n- `Rule Severity` values should be mapped as mentioned in below section\nMapping Elastic Security Rule's Severity with Splunk's Severity\n\n> \n> |Splunk's Severity| Elastic Rule Severity |\n> |---|---|\n> |1- Info|Low|\n> |2-Low|Low|\n> |3-Medium|Medium|\n> |4-High|High|\n> |5-Critical|Critical|\n\n- Elastic Security Rule's `Risk Score` derived from the `Severity` of\nthe Rulet based on below mapping(\n[Source](https://www.elastic.co/guide/en/security/current/rules-ui-create.html#rule-ui-basic-params)\n)\n\n\n\n\n\n## Desk Testing\n\n\n[splunk_rules_test_severity.json](https://github.com/user-attachments/files/18825855/splunk_rules_test_severity.json)\n\n\n1. Use the above attached test file which has the `alert.severity`\nexported from Splunk.\n2. Check the Severity of the translated rule should match the mapping\ngiven above. Expect results like below :\n\n<img width=\"1474\" alt=\"Screenshot 2025-02-17 at 14 19 23\"\nsrc=\"https://github.com/user-attachments/assets/a8459c71-3208-480e-8049-05293a0a3d2a\"\n/>\n\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"74ef9fcdee2086bf2c48a35c5c15fb0997fc41dd"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Jatin Kathuria <jatin.kathuria@elastic.co>
This fixes a problem with the log view resolution when entering the log settings page under certain conditions.
…astic#212105) # Backport This will backport the following commits from `main` to `8.x`: - [Update dependency xstate to ^4.38.3 (main) (elastic#211786)](elastic#211786) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"elastic-renovate-prod[bot]","email":"174716857+elastic-renovate-prod[bot]@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-02-21T15:14:28Z","message":"Update dependency xstate to ^4.38.3 (main) (elastic#211786)\n\nThis PR contains the following updates:\n\n| Package | Type | Update | Change |\n|---|---|---|---|\n|\n[xstate](https://redirect.github.com/statelyai/xstate/tree/main/packages/core#readme)\n([source](https://redirect.github.com/statelyai/xstate)) | dependencies\n| patch | [`^4.38.2` ->\n`^4.38.3`](https://renovatebot.com/diffs/npm/xstate/4.38.2/4.38.3) |\n\n---\n\n### Release Notes\n\n<details>\n<summary>statelyai/xstate (xstate)</summary>\n\n###\n[`v4.38.3`](https://redirect.github.com/statelyai/xstate/releases/tag/xstate%404.38.3)\n\n[Compare\nSource](https://redirect.github.com/statelyai/xstate/compare/xstate@4.38.2...xstate@4.38.3)\n\n##### Patch Changes\n\n- [#&elastic#8203;4380](https://redirect.github.com/statelyai/xstate/pull/4380)\n[`e9e065822`](https://redirect.github.com/statelyai/xstate/commit/e9e06582215abedf118cf2165e635eccb8e44251)\nThanks [@&elastic#8203;Andarist](https://redirect.github.com/Andarist)! - Fixed\nan issue with `exit` actions sometimes being called twice when a machine\nreaches its final state and leads its parent to stopping it at the same\ntime.\n\n</details>\n\n---\n\n### Configuration\n\n📅 **Schedule**: Branch creation - At any time (no schedule defined),\nAutomerge - At any time (no schedule defined).\n\n🚦 **Automerge**: Disabled by config. Please merge this manually once you\nare satisfied.\n\n♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the\nrebase/retry checkbox.\n\n🔕 **Ignore**: Close this PR and you won't be reminded about this update\nagain.\n\n---\n\n- [ ] If you want to rebase/retry this PR, check\nthis box\n\n---\n\nThis PR has been generated by [Renovate\nBot](https://redirect.github.com/renovatebot/renovate).\n\n\n\nCo-authored-by: elastic-renovate-prod[bot] <174716857+elastic-renovate-prod[bot]@users.noreply.github.com>","sha":"876959fb014c42c1b771e1aaec4a0d9227a6b40e","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","backport:all-open","Team:obs-ux-logs","v9.1.0"],"title":"Update dependency xstate to ^4.38.3 (main)","number":211786,"url":"https://github.com/elastic/kibana/pull/211786","mergeCommit":{"message":"Update dependency xstate to ^4.38.3 (main) (elastic#211786)\n\nThis PR contains the following updates:\n\n| Package | Type | Update | Change |\n|---|---|---|---|\n|\n[xstate](https://redirect.github.com/statelyai/xstate/tree/main/packages/core#readme)\n([source](https://redirect.github.com/statelyai/xstate)) | dependencies\n| patch | [`^4.38.2` ->\n`^4.38.3`](https://renovatebot.com/diffs/npm/xstate/4.38.2/4.38.3) |\n\n---\n\n### Release Notes\n\n<details>\n<summary>statelyai/xstate (xstate)</summary>\n\n###\n[`v4.38.3`](https://redirect.github.com/statelyai/xstate/releases/tag/xstate%404.38.3)\n\n[Compare\nSource](https://redirect.github.com/statelyai/xstate/compare/xstate@4.38.2...xstate@4.38.3)\n\n##### Patch Changes\n\n- [#&elastic#8203;4380](https://redirect.github.com/statelyai/xstate/pull/4380)\n[`e9e065822`](https://redirect.github.com/statelyai/xstate/commit/e9e06582215abedf118cf2165e635eccb8e44251)\nThanks [@&elastic#8203;Andarist](https://redirect.github.com/Andarist)! - Fixed\nan issue with `exit` actions sometimes being called twice when a machine\nreaches its final state and leads its parent to stopping it at the same\ntime.\n\n</details>\n\n---\n\n### Configuration\n\n📅 **Schedule**: Branch creation - At any time (no schedule defined),\nAutomerge - At any time (no schedule defined).\n\n🚦 **Automerge**: Disabled by config. Please merge this manually once you\nare satisfied.\n\n♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the\nrebase/retry checkbox.\n\n🔕 **Ignore**: Close this PR and you won't be reminded about this update\nagain.\n\n---\n\n- [ ] If you want to rebase/retry this PR, check\nthis box\n\n---\n\nThis PR has been generated by [Renovate\nBot](https://redirect.github.com/renovatebot/renovate).\n\n\n\nCo-authored-by: elastic-renovate-prod[bot] <174716857+elastic-renovate-prod[bot]@users.noreply.github.com>","sha":"876959fb014c42c1b771e1aaec4a0d9227a6b40e"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211786","number":211786,"mergeCommit":{"message":"Update dependency xstate to ^4.38.3 (main) (elastic#211786)\n\nThis PR contains the following updates:\n\n| Package | Type | Update | Change |\n|---|---|---|---|\n|\n[xstate](https://redirect.github.com/statelyai/xstate/tree/main/packages/core#readme)\n([source](https://redirect.github.com/statelyai/xstate)) | dependencies\n| patch | [`^4.38.2` ->\n`^4.38.3`](https://renovatebot.com/diffs/npm/xstate/4.38.2/4.38.3) |\n\n---\n\n### Release Notes\n\n<details>\n<summary>statelyai/xstate (xstate)</summary>\n\n###\n[`v4.38.3`](https://redirect.github.com/statelyai/xstate/releases/tag/xstate%404.38.3)\n\n[Compare\nSource](https://redirect.github.com/statelyai/xstate/compare/xstate@4.38.2...xstate@4.38.3)\n\n##### Patch Changes\n\n- [#&elastic#8203;4380](https://redirect.github.com/statelyai/xstate/pull/4380)\n[`e9e065822`](https://redirect.github.com/statelyai/xstate/commit/e9e06582215abedf118cf2165e635eccb8e44251)\nThanks [@&elastic#8203;Andarist](https://redirect.github.com/Andarist)! - Fixed\nan issue with `exit` actions sometimes being called twice when a machine\nreaches its final state and leads its parent to stopping it at the same\ntime.\n\n</details>\n\n---\n\n### Configuration\n\n📅 **Schedule**: Branch creation - At any time (no schedule defined),\nAutomerge - At any time (no schedule defined).\n\n🚦 **Automerge**: Disabled by config. Please merge this manually once you\nare satisfied.\n\n♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the\nrebase/retry checkbox.\n\n🔕 **Ignore**: Close this PR and you won't be reminded about this update\nagain.\n\n---\n\n- [ ] If you want to rebase/retry this PR, check\nthis box\n\n---\n\nThis PR has been generated by [Renovate\nBot](https://redirect.github.com/renovatebot/renovate).\n\n\n\nCo-authored-by: elastic-renovate-prod[bot] <174716857+elastic-renovate-prod[bot]@users.noreply.github.com>","sha":"876959fb014c42c1b771e1aaec4a0d9227a6b40e"}}]}] BACKPORT--> Co-authored-by: elastic-renovate-prod[bot] <174716857+elastic-renovate-prod[bot]@users.noreply.github.com> Co-authored-by: Felix Stürmer <weltenwort@users.noreply.github.com>
…stic#209982) (elastic#212893) # Backport This will backport the following commits from `main` to `8.x`: - [[Lens/SCSS] Delete and migrate `reference_lines.scss` file (elastic#209982)](elastic#209982) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Maria Iriarte","email":"106958839+mariairiartef@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-03-03T11:57:36Z","message":"[Lens/SCSS] Delete and migrate `reference_lines.scss` file (elastic#209982)\n\n## Summary\n\nPart of https://github.com/elastic/kibana/issues/208908\n\nReplaces scss to css-in-js.\n\n\n### Checklist\n\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by: Marta Bondyra <4283304+mbondyra@users.noreply.github.com>","sha":"3b3bbb1a856b1da89af72368895457d446721998","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["technical debt","Team:Visualizations","release_note:skip","Feature:Lens","v9.0.0","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Lens/SCSS] Delete and migrate `reference_lines.scss` file","number":209982,"url":"https://github.com/elastic/kibana/pull/209982","mergeCommit":{"message":"[Lens/SCSS] Delete and migrate `reference_lines.scss` file (elastic#209982)\n\n## Summary\n\nPart of https://github.com/elastic/kibana/issues/208908\n\nReplaces scss to css-in-js.\n\n\n### Checklist\n\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by: Marta Bondyra <4283304+mbondyra@users.noreply.github.com>","sha":"3b3bbb1a856b1da89af72368895457d446721998"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/209982","number":209982,"mergeCommit":{"message":"[Lens/SCSS] Delete and migrate `reference_lines.scss` file (elastic#209982)\n\n## Summary\n\nPart of https://github.com/elastic/kibana/issues/208908\n\nReplaces scss to css-in-js.\n\n\n### Checklist\n\n- [x] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n---------\n\nCo-authored-by: Marta Bondyra <4283304+mbondyra@users.noreply.github.com>","sha":"3b3bbb1a856b1da89af72368895457d446721998"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Maria Iriarte <106958839+mariairiartef@users.noreply.github.com>
…was moved to a new directory (elastic#211154) ## Summary The changes come from this file: [link](https://github.com/elastic/kibana/pull/201909/files#diff-10ff1407f7bb645bcfc58de818ba5b0bb2f0c4c4d8f8ec08bb5ce5f3afcd7da7). This file was relocated to a new directory, and the modifications reflect what was present in the original branch. These changes were missing in the backport PR created yesterday : elastic#210839 ### Checklist Check the PR satisfies following conditions. Reviewers should verify this PR satisfies this list as well. - [ ] [Unit or functional tests](https://www.elastic.co/guide/en/kibana/master/development-tests.html) were updated or added to match the most common scenarios - [ ] [Flaky Test Runner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was used on any tests changed - [ ] The PR description includes the appropriate Release Notes section, and the correct `release_note:*` label is applied per the [guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)
…astic#210406) (elastic#212900) # Backport This will backport the following commits from `main` to `8.x`: - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](elastic#210406) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Gergő Ábrahám","email":"gergo.abraham@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T12:31:00Z","message":"[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)\n\n## Summary\n\nTo update the `global_telemetry_config` flag in Defend package policies,\nwe subscribe to the Telemetry plugin's `isOptedIn# Backport This will backport the following commits from `main` to `8.x`: {{{{raw}}}} - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](https://github.com/elastic/kibana/pull/210406){{{{/raw}}}} <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT observable during\nKibana's `start()` phase, and receive the initial value immediately.\nThis feature is used for 'migrating' existing package policies: after\nstack upgrade, when Kibana starts up, this subscription mechanism makes\nsure that existing policies are backfilled with the new field.\n\nBut not on cloud and serverless instances.\n\nIt turned out, that while this works on local instances, on cloud and\nserverless instances, at the very moment we receive the value during\n`start()`, some mechanisms are not yet green, and this resulted in\n`security_exception: missing authentication credentials for REST\nrequest` when trying to read Saved Objects.\n\nAs subscribing to`core.status.core# Backport This will backport the following commits from `main` to `8.x`: {{{{raw}}}} - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](https://github.com/elastic/kibana/pull/210406){{{{/raw}}}} <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT , and waiting until `ServiceStatus`\nfor `elasticsearch` and `savedObjects` is `available` didn't solve the\nissue, I simply added a retry mechanism, which, at least, protects\nagainst other temporary issues as well.\n\nSome additional logging is added as well.\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n---------\n\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"e4ea87e92be7fb5b0824e2d79d878b0be089fdd6","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[EDR Workflows][Investigation] Telemetry config watcher fix","number":210406,"url":"https://github.com/elastic/kibana/pull/210406","mergeCommit":{"message":"[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)\n\n## Summary\n\nTo update the `global_telemetry_config` flag in Defend package policies,\nwe subscribe to the Telemetry plugin's `isOptedIn# Backport This will backport the following commits from `main` to `8.x`: {{{{raw}}}} - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](https://github.com/elastic/kibana/pull/210406){{{{/raw}}}} <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT observable during\nKibana's `start()` phase, and receive the initial value immediately.\nThis feature is used for 'migrating' existing package policies: after\nstack upgrade, when Kibana starts up, this subscription mechanism makes\nsure that existing policies are backfilled with the new field.\n\nBut not on cloud and serverless instances.\n\nIt turned out, that while this works on local instances, on cloud and\nserverless instances, at the very moment we receive the value during\n`start()`, some mechanisms are not yet green, and this resulted in\n`security_exception: missing authentication credentials for REST\nrequest` when trying to read Saved Objects.\n\nAs subscribing to`core.status.core# Backport This will backport the following commits from `main` to `8.x`: {{{{raw}}}} - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](https://github.com/elastic/kibana/pull/210406){{{{/raw}}}} <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT , and waiting until `ServiceStatus`\nfor `elasticsearch` and `savedObjects` is `available` didn't solve the\nissue, I simply added a retry mechanism, which, at least, protects\nagainst other temporary issues as well.\n\nSome additional logging is added as well.\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n---------\n\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"e4ea87e92be7fb5b0824e2d79d878b0be089fdd6"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/210406","number":210406,"mergeCommit":{"message":"[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)\n\n## Summary\n\nTo update the `global_telemetry_config` flag in Defend package policies,\nwe subscribe to the Telemetry plugin's `isOptedIn# Backport This will backport the following commits from `main` to `8.x`: {{{{raw}}}} - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](https://github.com/elastic/kibana/pull/210406){{{{/raw}}}} <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT observable during\nKibana's `start()` phase, and receive the initial value immediately.\nThis feature is used for 'migrating' existing package policies: after\nstack upgrade, when Kibana starts up, this subscription mechanism makes\nsure that existing policies are backfilled with the new field.\n\nBut not on cloud and serverless instances.\n\nIt turned out, that while this works on local instances, on cloud and\nserverless instances, at the very moment we receive the value during\n`start()`, some mechanisms are not yet green, and this resulted in\n`security_exception: missing authentication credentials for REST\nrequest` when trying to read Saved Objects.\n\nAs subscribing to`core.status.core# Backport This will backport the following commits from `main` to `8.x`: {{{{raw}}}} - [[EDR Workflows][Investigation] Telemetry config watcher fix (elastic#210406)](https://github.com/elastic/kibana/pull/210406){{{{/raw}}}} <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT , and waiting until `ServiceStatus`\nfor `elasticsearch` and `savedObjects` is `available` didn't solve the\nissue, I simply added a retry mechanism, which, at least, protects\nagainst other temporary issues as well.\n\nSome additional logging is added as well.\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n---------\n\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"e4ea87e92be7fb5b0824e2d79d878b0be089fdd6"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Gergő Ábrahám <gergo.abraham@elastic.co>
…) (elastic#212909) # Backport This will backport the following commits from `main` to `8.x`: - [adds thumbnail for elasticsearch logs integration (elastic#212877)](elastic#212877) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Eyo O. Eyo","email":"7893459+eokoneyo@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-03-03T12:53:05Z","message":"adds thumbnail for elasticsearch logs integration (elastic#212877)\n\n## Summary\n\nCloses https://github.com/elastic/kibana/issues/204328\n\n## Visuals\n<img width=\"1313\" alt=\"Screenshot 2025-03-03 at 12 11 16\"\nsrc=\"https://github.com/user-attachments/assets/99e627fe-6136-4a1e-8178-f8afd9bb9e27\"\n/>\n\n\n","sha":"883bc1794b07658b4ffe4ec387f38b87c22ca03e","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Team:SharedUX","backport:prev-minor","backport:prev-major","v9.1.0"],"title":"adds thumbnail for elasticsearch logs integration","number":212877,"url":"https://github.com/elastic/kibana/pull/212877","mergeCommit":{"message":"adds thumbnail for elasticsearch logs integration (elastic#212877)\n\n## Summary\n\nCloses https://github.com/elastic/kibana/issues/204328\n\n## Visuals\n<img width=\"1313\" alt=\"Screenshot 2025-03-03 at 12 11 16\"\nsrc=\"https://github.com/user-attachments/assets/99e627fe-6136-4a1e-8178-f8afd9bb9e27\"\n/>\n\n\n","sha":"883bc1794b07658b4ffe4ec387f38b87c22ca03e"}},"sourceBranch":"main","suggestedTargetBranches":[],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212877","number":212877,"mergeCommit":{"message":"adds thumbnail for elasticsearch logs integration (elastic#212877)\n\n## Summary\n\nCloses https://github.com/elastic/kibana/issues/204328\n\n## Visuals\n<img width=\"1313\" alt=\"Screenshot 2025-03-03 at 12 11 16\"\nsrc=\"https://github.com/user-attachments/assets/99e627fe-6136-4a1e-8178-f8afd9bb9e27\"\n/>\n\n\n","sha":"883bc1794b07658b4ffe4ec387f38b87c22ca03e"}}]}] BACKPORT--> Co-authored-by: Eyo O. Eyo <7893459+eokoneyo@users.noreply.github.com>
…stic#212510) (elastic#212867) # Backport This will backport the following commits from `main` to `8.x`: - [[EDR Workflows] OpenApi Missing Content - Response Actions (elastic#212510)](elastic#212510) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Konrad Szwarc","email":"konrad.szwarc@elastic.co"},"sourceCommit":{"committedDate":"2025-02-28T16:44:00Z","message":"[EDR Workflows] OpenApi Missing Content - Response Actions (elastic#212510)\n\n## For reviewers:\nOnly `*.schema.yml` files were edited (excluding\n`*.bundled.schema.yml`). Rest of the changes comes from auto generation\nand can be ignored.\n\n## Description\n\nPart of DW team effort - elastic/security-team#11804\n\nThis PR aligns the property/schema descriptions and examples in\nAsciiDocs with OpenAPI schemas. The primary goal of this PR was not to\nextend or enhance the documentation but to migrate from one system to\nanother.\n\nAscii docs -\nhttps://www.elastic.co/guide/en/security/8.17/management-api-overview.html\nOpenApi generated docs -\nhttps://www.elastic.co/docs/api/doc/kibana/operation/operation-endpointgetactionslist\n\nChanges:\n\nCopied missing property descriptions from AsciiDoc to OpenApi properties\nCopied existing AsciiDoc examples for both requests and responses\nFixed falsy query object in some GET requests - in OpenApi it was\ndefined as an object, not as path query params.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Paul Tavares <56442535+paul-tavares@users.noreply.github.com>\nCo-authored-by: natasha-moore-elastic <137783811+natasha-moore-elastic@users.noreply.github.com>","sha":"2700a2a95158dc5d5a77ff074119b1b61f949310","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","Team:Defend Workflows","backport:prev-minor","backport:prev-major","v8.16.0","v8.17.0","v8.18.0","v9.1.0"],"title":"[EDR Workflows] OpenApi Missing Content - Response Actions","number":212510,"url":"https://github.com/elastic/kibana/pull/212510","mergeCommit":{"message":"[EDR Workflows] OpenApi Missing Content - Response Actions (elastic#212510)\n\n## For reviewers:\nOnly `*.schema.yml` files were edited (excluding\n`*.bundled.schema.yml`). Rest of the changes comes from auto generation\nand can be ignored.\n\n## Description\n\nPart of DW team effort - elastic/security-team#11804\n\nThis PR aligns the property/schema descriptions and examples in\nAsciiDocs with OpenAPI schemas. The primary goal of this PR was not to\nextend or enhance the documentation but to migrate from one system to\nanother.\n\nAscii docs -\nhttps://www.elastic.co/guide/en/security/8.17/management-api-overview.html\nOpenApi generated docs -\nhttps://www.elastic.co/docs/api/doc/kibana/operation/operation-endpointgetactionslist\n\nChanges:\n\nCopied missing property descriptions from AsciiDoc to OpenApi properties\nCopied existing AsciiDoc examples for both requests and responses\nFixed falsy query object in some GET requests - in OpenApi it was\ndefined as an object, not as path query params.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Paul Tavares <56442535+paul-tavares@users.noreply.github.com>\nCo-authored-by: natasha-moore-elastic <137783811+natasha-moore-elastic@users.noreply.github.com>","sha":"2700a2a95158dc5d5a77ff074119b1b61f949310"}},"sourceBranch":"main","suggestedTargetBranches":["8.16","8.17","8.18"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"url":"https://github.com/elastic/kibana/pull/212794","number":212794,"state":"MERGED","mergeCommit":{"sha":"3ceba17cbd76f89b72986190b8c77f5079706282","message":"[9.0] [EDR Workflows] OpenApi Missing Content - Response Actions (elastic#212510) (elastic#212794)\n\n# Backport\n\nThis will backport the following commits from `main` to `9.0`:\n- [[EDR Workflows] OpenApi Missing Content - Response Actions\n(elastic#212510)](https://github.com/elastic/kibana/pull/212510)\n\n\n\n### Questions ?\nPlease refer to the [Backport tool\ndocumentation](https://github.com/sorenlouv/backport)\n\n\n\nCo-authored-by: Konrad Szwarc <konrad.szwarc@elastic.co>"}},{"branch":"8.16","label":"v8.16.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.17","label":"v8.17.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212510","number":212510,"mergeCommit":{"message":"[EDR Workflows] OpenApi Missing Content - Response Actions (elastic#212510)\n\n## For reviewers:\nOnly `*.schema.yml` files were edited (excluding\n`*.bundled.schema.yml`). Rest of the changes comes from auto generation\nand can be ignored.\n\n## Description\n\nPart of DW team effort - elastic/security-team#11804\n\nThis PR aligns the property/schema descriptions and examples in\nAsciiDocs with OpenAPI schemas. The primary goal of this PR was not to\nextend or enhance the documentation but to migrate from one system to\nanother.\n\nAscii docs -\nhttps://www.elastic.co/guide/en/security/8.17/management-api-overview.html\nOpenApi generated docs -\nhttps://www.elastic.co/docs/api/doc/kibana/operation/operation-endpointgetactionslist\n\nChanges:\n\nCopied missing property descriptions from AsciiDoc to OpenApi properties\nCopied existing AsciiDoc examples for both requests and responses\nFixed falsy query object in some GET requests - in OpenApi it was\ndefined as an object, not as path query params.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Paul Tavares <56442535+paul-tavares@users.noreply.github.com>\nCo-authored-by: natasha-moore-elastic <137783811+natasha-moore-elastic@users.noreply.github.com>","sha":"2700a2a95158dc5d5a77ff074119b1b61f949310"}}]}] BACKPORT--> --------- Co-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>
…elastic#212913) # Backport This will backport the following commits from `main` to `8.x`: - [[scout] enable ES authc debug logs on ES start (elastic#212866)](elastic#212866) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Dzmitry Lemechko","email":"dzmitry.lemechko@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T13:41:40Z","message":"[scout] enable ES authc debug logs on ES start (elastic#212866)\n\n## Summary\n\nIn elastic#211055 we enabled Elasticsearch Authc debug logs, but we use the\ndifferent entry function to start servers on CI. This PR moves the call\ninto `runElasticsearch` so that logs are enabled for every Scout script\n(start-server or run-tests)","sha":"043d780b2afbfc722c6f849bc7dfdb1098550447","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","backport:version","test:scout","v9.1.0","v8.19.0"],"title":"[scout] enable ES authc debug logs on ES start","number":212866,"url":"https://github.com/elastic/kibana/pull/212866","mergeCommit":{"message":"[scout] enable ES authc debug logs on ES start (elastic#212866)\n\n## Summary\n\nIn elastic#211055 we enabled Elasticsearch Authc debug logs, but we use the\ndifferent entry function to start servers on CI. This PR moves the call\ninto `runElasticsearch` so that logs are enabled for every Scout script\n(start-server or run-tests)","sha":"043d780b2afbfc722c6f849bc7dfdb1098550447"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212866","number":212866,"mergeCommit":{"message":"[scout] enable ES authc debug logs on ES start (elastic#212866)\n\n## Summary\n\nIn elastic#211055 we enabled Elasticsearch Authc debug logs, but we use the\ndifferent entry function to start servers on CI. This PR moves the call\ninto `runElasticsearch` so that logs are enabled for every Scout script\n(start-server or run-tests)","sha":"043d780b2afbfc722c6f849bc7dfdb1098550447"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Dzmitry Lemechko <dzmitry.lemechko@elastic.co>
…sponse size (elastic#211045) (elastic#212921) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Solution] Reduce the _review rule upgrade endpoint response size (elastic#211045)](elastic#211045) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Dmitrii Shevchenko","email":"dmitrii.shevchenko@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T14:03:07Z","message":"[Security Solution] Reduce the _review rule upgrade endpoint response size (elastic#211045)\n\n**Resolves: https://github.com/elastic/kibana/issues/208361**\n**Resolves: https://github.com/elastic/kibana/issues/210544**\n\n## Summary\n\nThis PR introduces significant memory consumption improvements to the\nprebuilt rule endpoints, ensuring users won't encounter OOM errors on\nmemory-limited Kibana instances.\n\nMemory consumption testing results provided in\nhttps://github.com/elastic/pull/211045#issuecomment-2689854328.\n\n## Details\n\nThis PR implements a number of memory usage optimizations to the\nprebuilt rule endpoints with the final goal reducing chances of getting\nOOM errors. The changes are extensive and require thorough testing\nbefore merging.\n\nThe changes are described by the following bullets\n\n- The most significant change is the addition of pagination to the\n`upgrade/_review` endpoint. This endpoint was known for causing OOM\nerrors due to its large and ever-growing response size. With pagination,\nit now returns upgrade information for no more than 20-100 rules at a\ntime, significantly reducing its memory footprint.\n- New backend methods, such as\n`ruleObjectsClient.fetchInstalledRuleVersions`, have been introduced.\nThese methods return rule IDs with their corresponding installed\nversions, allowing to build a map of outdated rules without loading all\navailable rules into memory. Previously, all installed rules, along with\ntheir base and target versions, were fetched unconditionally before\nfiltering for updates.\n- The `stats` data structure of the review endpoint has been deprecated\n(it can be safely removed after one Serverless release cycle). Since the\nendpoint now returns paginated results, building stats is no longer\nfeasible due to the limited rule set size fetched on the server side. As\nthe side effect it required removing related Cypress tests asserting\n`Update All` disabled when rules can't be updated.\n- All changes to the endpoints are backward-compatible. All previously\nrequired returned structures still present in response. All newly added\nstructures are optional.\n- Upgradeable rule tags are now returned from the prebuilt rule status\nendpoint.\n- The frontend logic has been updated to move sorting and filtering of\nprebuilt rules from the client side to the server side.\n- The `upgrade/_perform` endpoint has been rewritten to use lightweight\nrule version information rather than full rules to determine upgradeable\nrules. Additionally, upgrades are now performed in batches of up to 100\nrules, further reducing memory usage.\n- A dry run option has been added to the upgrade perform endpoint. This\nis needed for the \"Update all\" rules scenario to determine if any rules\ncontain conflicts and display a confirmation modal to the user.\n- An option to skip conflicting rules has been added to the upgrade\nendpoint when called with the `ALL_RULES` mode.\n- The `install/_review` endpoint's memory consumption has been optimized\nby avoiding loading all rules into memory to determine available rules\nfor installation. Redundant fetching of all base versions has also been\nremoved, as they do not participate in the calculation.\n\n---------\n\nCo-authored-by: Maxim Palenov <maxim.palenov@elastic.co>","sha":"c4a016eda30ae8f224fdd485a634dc6773898e31","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["bug","release_note:fix","performance","v9.0.0","Team:Detections and Resp","Team: SecuritySolution","Team:Detection Rule Management","Feature:Prebuilt Detection Rules","backport:version","v8.18.0","v9.1.0","v8.19.0","v8.17.3"],"title":"[Security Solution] Reduce the _review rule upgrade endpoint response size","number":211045,"url":"https://github.com/elastic/kibana/pull/211045","mergeCommit":{"message":"[Security Solution] Reduce the _review rule upgrade endpoint response size (elastic#211045)\n\n**Resolves: https://github.com/elastic/kibana/issues/208361**\n**Resolves: https://github.com/elastic/kibana/issues/210544**\n\n## Summary\n\nThis PR introduces significant memory consumption improvements to the\nprebuilt rule endpoints, ensuring users won't encounter OOM errors on\nmemory-limited Kibana instances.\n\nMemory consumption testing results provided in\nhttps://github.com/elastic/pull/211045#issuecomment-2689854328.\n\n## Details\n\nThis PR implements a number of memory usage optimizations to the\nprebuilt rule endpoints with the final goal reducing chances of getting\nOOM errors. The changes are extensive and require thorough testing\nbefore merging.\n\nThe changes are described by the following bullets\n\n- The most significant change is the addition of pagination to the\n`upgrade/_review` endpoint. This endpoint was known for causing OOM\nerrors due to its large and ever-growing response size. With pagination,\nit now returns upgrade information for no more than 20-100 rules at a\ntime, significantly reducing its memory footprint.\n- New backend methods, such as\n`ruleObjectsClient.fetchInstalledRuleVersions`, have been introduced.\nThese methods return rule IDs with their corresponding installed\nversions, allowing to build a map of outdated rules without loading all\navailable rules into memory. Previously, all installed rules, along with\ntheir base and target versions, were fetched unconditionally before\nfiltering for updates.\n- The `stats` data structure of the review endpoint has been deprecated\n(it can be safely removed after one Serverless release cycle). Since the\nendpoint now returns paginated results, building stats is no longer\nfeasible due to the limited rule set size fetched on the server side. As\nthe side effect it required removing related Cypress tests asserting\n`Update All` disabled when rules can't be updated.\n- All changes to the endpoints are backward-compatible. All previously\nrequired returned structures still present in response. All newly added\nstructures are optional.\n- Upgradeable rule tags are now returned from the prebuilt rule status\nendpoint.\n- The frontend logic has been updated to move sorting and filtering of\nprebuilt rules from the client side to the server side.\n- The `upgrade/_perform` endpoint has been rewritten to use lightweight\nrule version information rather than full rules to determine upgradeable\nrules. Additionally, upgrades are now performed in batches of up to 100\nrules, further reducing memory usage.\n- A dry run option has been added to the upgrade perform endpoint. This\nis needed for the \"Update all\" rules scenario to determine if any rules\ncontain conflicts and display a confirmation modal to the user.\n- An option to skip conflicting rules has been added to the upgrade\nendpoint when called with the `ALL_RULES` mode.\n- The `install/_review` endpoint's memory consumption has been optimized\nby avoiding loading all rules into memory to determine available rules\nfor installation. Redundant fetching of all base versions has also been\nremoved, as they do not participate in the calculation.\n\n---------\n\nCo-authored-by: Maxim Palenov <maxim.palenov@elastic.co>","sha":"c4a016eda30ae8f224fdd485a634dc6773898e31"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x","8.17"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211045","number":211045,"mergeCommit":{"message":"[Security Solution] Reduce the _review rule upgrade endpoint response size (elastic#211045)\n\n**Resolves: https://github.com/elastic/kibana/issues/208361**\n**Resolves: https://github.com/elastic/kibana/issues/210544**\n\n## Summary\n\nThis PR introduces significant memory consumption improvements to the\nprebuilt rule endpoints, ensuring users won't encounter OOM errors on\nmemory-limited Kibana instances.\n\nMemory consumption testing results provided in\nhttps://github.com/elastic/pull/211045#issuecomment-2689854328.\n\n## Details\n\nThis PR implements a number of memory usage optimizations to the\nprebuilt rule endpoints with the final goal reducing chances of getting\nOOM errors. The changes are extensive and require thorough testing\nbefore merging.\n\nThe changes are described by the following bullets\n\n- The most significant change is the addition of pagination to the\n`upgrade/_review` endpoint. This endpoint was known for causing OOM\nerrors due to its large and ever-growing response size. With pagination,\nit now returns upgrade information for no more than 20-100 rules at a\ntime, significantly reducing its memory footprint.\n- New backend methods, such as\n`ruleObjectsClient.fetchInstalledRuleVersions`, have been introduced.\nThese methods return rule IDs with their corresponding installed\nversions, allowing to build a map of outdated rules without loading all\navailable rules into memory. Previously, all installed rules, along with\ntheir base and target versions, were fetched unconditionally before\nfiltering for updates.\n- The `stats` data structure of the review endpoint has been deprecated\n(it can be safely removed after one Serverless release cycle). Since the\nendpoint now returns paginated results, building stats is no longer\nfeasible due to the limited rule set size fetched on the server side. As\nthe side effect it required removing related Cypress tests asserting\n`Update All` disabled when rules can't be updated.\n- All changes to the endpoints are backward-compatible. All previously\nrequired returned structures still present in response. All newly added\nstructures are optional.\n- Upgradeable rule tags are now returned from the prebuilt rule status\nendpoint.\n- The frontend logic has been updated to move sorting and filtering of\nprebuilt rules from the client side to the server side.\n- The `upgrade/_perform` endpoint has been rewritten to use lightweight\nrule version information rather than full rules to determine upgradeable\nrules. Additionally, upgrades are now performed in batches of up to 100\nrules, further reducing memory usage.\n- A dry run option has been added to the upgrade perform endpoint. This\nis needed for the \"Update all\" rules scenario to determine if any rules\ncontain conflicts and display a confirmation modal to the user.\n- An option to skip conflicting rules has been added to the upgrade\nendpoint when called with the `ALL_RULES` mode.\n- The `install/_review` endpoint's memory consumption has been optimized\nby avoiding loading all rules into memory to determine available rules\nfor installation. Redundant fetching of all base versions has also been\nremoved, as they do not participate in the calculation.\n\n---------\n\nCo-authored-by: Maxim Palenov <maxim.palenov@elastic.co>","sha":"c4a016eda30ae8f224fdd485a634dc6773898e31"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.17","label":"v8.17.3","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Dmitrii Shevchenko <dmitrii.shevchenko@elastic.co>
…s to use tool helper method (elastic#212865) (elastic#212928) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Solution] [GenAi] refactor security ai assistant tools to use tool helper method (elastic#212865)](elastic#212865) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Kenneth Kreindler","email":"42113355+KDKHD@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-03-03T14:35:22Z","message":"[Security Solution] [GenAi] refactor security ai assistant tools to use tool helper method (elastic#212865)\n\n## Summary\n\nClean up some security ai assistant code.\n\n- Replace the usage of `new DynamicStructuredTool()` with the `tool()`\nhelper method. This is the recommended approach today and has the\ncorrect types to work with\n[`Command`](https://langchain-ai.github.io/langgraphjs/concepts/low_level/#command).\n- Extract code such as the default assistant graph state and\nagentRunnableFactory to reduce cognitive overload.\n- Update AssistantTool type definition\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [X] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [X]\n[Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html)\nwas added for features that require explanation or tutorials\n- [X] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [X] If a plugin configuration key changed, check if it needs to be\nallowlisted in the cloud and added to the [docker\nlist](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker)\n- [X] This was checked for breaking HTTP API changes, and any breaking\nchanges have been approved by the breaking-change committee. The\n`release_note:breaking` label should be applied in these situations.\n- [X] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [X] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"d37fcb6fb686e59f18e541113ef16d01030c8d86","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Team:Security Generative AI","backport:version","v9.1.0","v8.19.0"],"title":"[Security Solution] [GenAi] refactor security ai assistant tools to use tool helper method","number":212865,"url":"https://github.com/elastic/kibana/pull/212865","mergeCommit":{"message":"[Security Solution] [GenAi] refactor security ai assistant tools to use tool helper method (elastic#212865)\n\n## Summary\n\nClean up some security ai assistant code.\n\n- Replace the usage of `new DynamicStructuredTool()` with the `tool()`\nhelper method. This is the recommended approach today and has the\ncorrect types to work with\n[`Command`](https://langchain-ai.github.io/langgraphjs/concepts/low_level/#command).\n- Extract code such as the default assistant graph state and\nagentRunnableFactory to reduce cognitive overload.\n- Update AssistantTool type definition\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [X] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [X]\n[Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html)\nwas added for features that require explanation or tutorials\n- [X] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [X] If a plugin configuration key changed, check if it needs to be\nallowlisted in the cloud and added to the [docker\nlist](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker)\n- [X] This was checked for breaking HTTP API changes, and any breaking\nchanges have been approved by the breaking-change committee. The\n`release_note:breaking` label should be applied in these situations.\n- [X] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [X] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"d37fcb6fb686e59f18e541113ef16d01030c8d86"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212865","number":212865,"mergeCommit":{"message":"[Security Solution] [GenAi] refactor security ai assistant tools to use tool helper method (elastic#212865)\n\n## Summary\n\nClean up some security ai assistant code.\n\n- Replace the usage of `new DynamicStructuredTool()` with the `tool()`\nhelper method. This is the recommended approach today and has the\ncorrect types to work with\n[`Command`](https://langchain-ai.github.io/langgraphjs/concepts/low_level/#command).\n- Extract code such as the default assistant graph state and\nagentRunnableFactory to reduce cognitive overload.\n- Update AssistantTool type definition\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [X] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n- [X]\n[Documentation](https://www.elastic.co/guide/en/kibana/master/development-documentation.html)\nwas added for features that require explanation or tutorials\n- [X] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n- [X] If a plugin configuration key changed, check if it needs to be\nallowlisted in the cloud and added to the [docker\nlist](https://github.com/elastic/kibana/blob/main/src/dev/build/tasks/os_packages/docker_generator/resources/base/bin/kibana-docker)\n- [X] This was checked for breaking HTTP API changes, and any breaking\nchanges have been approved by the breaking-change committee. The\n`release_note:breaking` label should be applied in these situations.\n- [X] [Flaky Test\nRunner](https://ci-stats.kibana.dev/trigger_flaky_test_runner/1) was\nused on any tests changed\n- [X] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)\n\n### Identify risks\n\nDoes this PR introduce any risks? For example, consider risks like hard\nto test bugs, performance regression, potential of data loss.\n\nDescribe the risk, its severity, and mitigation for each identified\nrisk. Invite stakeholders and evaluate how to proceed before merging.\n\n- [ ] [See some risk\nexamples](https://github.com/elastic/kibana/blob/main/RISK_MATRIX.mdx)\n- [ ] ...\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"d37fcb6fb686e59f18e541113ef16d01030c8d86"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Kenneth Kreindler <42113355+KDKHD@users.noreply.github.com>
elastic#212967) # Backport This will backport the following commits from `main` to `8.x`: - [[ES|QL] Makes the clear control button optional (elastic#212848)](elastic#212848) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Stratoula Kalafateli","email":"efstratia.kalafateli@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T18:03:57Z","message":"[ES|QL] Makes the clear control button optional (elastic#212848)\n\n## Summary\n\nCloses https://github.com/elastic/kibana/issues/212605\n\nHere we are removing the clear button from the ES|QL control as clearing\nwill result in wrong charts. I also considered the reset but when there\nis no changes should be hidden or disabled. This seems to me as a\nsmaller change and taken under consideration that dashboard already\nallows resetting I think it is ok to remove it.\n\nWe can always reconsider if any user complains.\n\nAlthough by removing the clearSelections from the control config removes\nthe button the `DefaultControlApi ` was marking it as required. So I had\nto tweak a bit the types.","sha":"f6978eaf7b511791039210dd9643b68ae3b6b242","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Feature:ES|QL","Team:ESQL","backport:version","v9.1.0","v8.19.0"],"title":"[ES|QL] Makes the clear control button optional","number":212848,"url":"https://github.com/elastic/kibana/pull/212848","mergeCommit":{"message":"[ES|QL] Makes the clear control button optional (elastic#212848)\n\n## Summary\n\nCloses https://github.com/elastic/kibana/issues/212605\n\nHere we are removing the clear button from the ES|QL control as clearing\nwill result in wrong charts. I also considered the reset but when there\nis no changes should be hidden or disabled. This seems to me as a\nsmaller change and taken under consideration that dashboard already\nallows resetting I think it is ok to remove it.\n\nWe can always reconsider if any user complains.\n\nAlthough by removing the clearSelections from the control config removes\nthe button the `DefaultControlApi ` was marking it as required. So I had\nto tweak a bit the types.","sha":"f6978eaf7b511791039210dd9643b68ae3b6b242"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212848","number":212848,"mergeCommit":{"message":"[ES|QL] Makes the clear control button optional (elastic#212848)\n\n## Summary\n\nCloses https://github.com/elastic/kibana/issues/212605\n\nHere we are removing the clear button from the ES|QL control as clearing\nwill result in wrong charts. I also considered the reset but when there\nis no changes should be hidden or disabled. This seems to me as a\nsmaller change and taken under consideration that dashboard already\nallows resetting I think it is ok to remove it.\n\nWe can always reconsider if any user complains.\n\nAlthough by removing the clearSelections from the control config removes\nthe button the `DefaultControlApi ` was marking it as required. So I had\nto tweak a bit the types.","sha":"f6978eaf7b511791039210dd9643b68ae3b6b242"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Stratoula Kalafateli <efstratia.kalafateli@elastic.co>
…lastic#212952) # Backport This will backport the following commits from `main` to `8.x`: - [[SecuritySolution] Fix add to library action (elastic#212659)](elastic#212659) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Angela Chuang","email":"6295984+angorayc@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-03-03T16:33:10Z","message":"[SecuritySolution] Fix add to library action (elastic#212659)\n\n## Summary\n\nAdd to library actions are not working.\nIssue description and steps to reproduce:\nhttps://github.com/elastic/issues/212650\n\n\nUpdate according to SaveModalComponent change:\nhttps://github.com/elastic/pull/186642/files#diff-137261ad728b083fd39cb5d6b58d7afd3d4c4e24749b78609a9aa4b3c63e4170R290\n\n\nhttps://github.com/user-attachments/assets/a0d0e81e-5a0f-4462-b110-370894c6bf36\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Michael Olorunnisola <michael.olorunnisola@elastic.co>","sha":"24d2cd3e4f31fd75c6481934119ca380931cd6d0","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["bug","release_note:skip","v9.0.0","Team:Threat Hunting:Explore","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[SecuritySolution] Fix add to library action","number":212659,"url":"https://github.com/elastic/kibana/pull/212659","mergeCommit":{"message":"[SecuritySolution] Fix add to library action (elastic#212659)\n\n## Summary\n\nAdd to library actions are not working.\nIssue description and steps to reproduce:\nhttps://github.com/elastic/issues/212650\n\n\nUpdate according to SaveModalComponent change:\nhttps://github.com/elastic/pull/186642/files#diff-137261ad728b083fd39cb5d6b58d7afd3d4c4e24749b78609a9aa4b3c63e4170R290\n\n\nhttps://github.com/user-attachments/assets/a0d0e81e-5a0f-4462-b110-370894c6bf36\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Michael Olorunnisola <michael.olorunnisola@elastic.co>","sha":"24d2cd3e4f31fd75c6481934119ca380931cd6d0"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212659","number":212659,"mergeCommit":{"message":"[SecuritySolution] Fix add to library action (elastic#212659)\n\n## Summary\n\nAdd to library actions are not working.\nIssue description and steps to reproduce:\nhttps://github.com/elastic/issues/212650\n\n\nUpdate according to SaveModalComponent change:\nhttps://github.com/elastic/pull/186642/files#diff-137261ad728b083fd39cb5d6b58d7afd3d4c4e24749b78609a9aa4b3c63e4170R290\n\n\nhttps://github.com/user-attachments/assets/a0d0e81e-5a0f-4462-b110-370894c6bf36\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Michael Olorunnisola <michael.olorunnisola@elastic.co>","sha":"24d2cd3e4f31fd75c6481934119ca380931cd6d0"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Angela Chuang <6295984+angorayc@users.noreply.github.com>
…elastic#212979) # Backport This will backport the following commits from `main` to `8.x`: - [[ES|QL] Separate `ENRICH` autocomplete routine (elastic#211657)](elastic#211657) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Drew Tate","email":"drew.tate@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T20:24:23Z","message":"[ES|QL] Separate `ENRICH` autocomplete routine (elastic#211657)\n\n## Summary\n\nPart of https://github.com/elastic/kibana/issues/195418\n\nGives `ENRICH` autocomplete logic its own home 🏡\n\n### Checklist\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n### Identify risks\n\n- [ ] As with any refactor, there's a possibility this will introduce a\nregression in the behavior of commands. However, all automated tests are\npassing and I have tested the behavior manually and can detect no\nregression.\n\n---------\n\nCo-authored-by: Stratoula Kalafateli <efstratia.kalafateli@elastic.co>","sha":"f2a91732d8f8d20a22bf761bfe9ec85e8a8e1c0c","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Feature:ES|QL","Team:ESQL","backport:version","v9.1.0","v8.19.0"],"title":"[ES|QL] Separate `ENRICH` autocomplete routine","number":211657,"url":"https://github.com/elastic/kibana/pull/211657","mergeCommit":{"message":"[ES|QL] Separate `ENRICH` autocomplete routine (elastic#211657)\n\n## Summary\n\nPart of https://github.com/elastic/kibana/issues/195418\n\nGives `ENRICH` autocomplete logic its own home 🏡\n\n### Checklist\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n### Identify risks\n\n- [ ] As with any refactor, there's a possibility this will introduce a\nregression in the behavior of commands. However, all automated tests are\npassing and I have tested the behavior manually and can detect no\nregression.\n\n---------\n\nCo-authored-by: Stratoula Kalafateli <efstratia.kalafateli@elastic.co>","sha":"f2a91732d8f8d20a22bf761bfe9ec85e8a8e1c0c"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211657","number":211657,"mergeCommit":{"message":"[ES|QL] Separate `ENRICH` autocomplete routine (elastic#211657)\n\n## Summary\n\nPart of https://github.com/elastic/kibana/issues/195418\n\nGives `ENRICH` autocomplete logic its own home 🏡\n\n### Checklist\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n\n### Identify risks\n\n- [ ] As with any refactor, there's a possibility this will introduce a\nregression in the behavior of commands. However, all automated tests are\npassing and I have tested the behavior manually and can detect no\nregression.\n\n---------\n\nCo-authored-by: Stratoula Kalafateli <efstratia.kalafateli@elastic.co>","sha":"f2a91732d8f8d20a22bf761bfe9ec85e8a8e1c0c"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Drew Tate <drew.tate@elastic.co>
…m to esClient.msearch (elastic#212465) (elastic#212983) # Backport This will backport the following commits from `main` to `8.x`: - [[AI Assistant] Fixed DataClient find method to pass fields param to esClient.msearch (elastic#212465)](elastic#212465) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Yuliia Naumenko","email":"jo.naumenko@gmail.com"},"sourceCommit":{"committedDate":"2025-03-03T17:43:16Z","message":"[AI Assistant] Fixed DataClient find method to pass fields param to esClient.msearch (elastic#212465)\n\nFixed `AIAssistantDataClient` to send values of the `fields` param if is\nprovided to `esClient.msearch` request.\n\nTo test run the API query\n`http://localhost:5601/api/security_ai_assistant/current_user/conversations/_find?page=1&per_page=99&fields=id,users,apiConfig.connectorId`\nand makes sure the only provided fields are returned in the result.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"7afe813b35ff4e1cd97be50dbaec2dec554eed26","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["bug","release_note:skip","backport:version","v9.1.0","v8.19.0"],"title":"[AI Assistant] Fixed DataClient find method to pass fields param to esClient.msearch","number":212465,"url":"https://github.com/elastic/kibana/pull/212465","mergeCommit":{"message":"[AI Assistant] Fixed DataClient find method to pass fields param to esClient.msearch (elastic#212465)\n\nFixed `AIAssistantDataClient` to send values of the `fields` param if is\nprovided to `esClient.msearch` request.\n\nTo test run the API query\n`http://localhost:5601/api/security_ai_assistant/current_user/conversations/_find?page=1&per_page=99&fields=id,users,apiConfig.connectorId`\nand makes sure the only provided fields are returned in the result.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"7afe813b35ff4e1cd97be50dbaec2dec554eed26"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212465","number":212465,"mergeCommit":{"message":"[AI Assistant] Fixed DataClient find method to pass fields param to esClient.msearch (elastic#212465)\n\nFixed `AIAssistantDataClient` to send values of the `fields` param if is\nprovided to `esClient.msearch` request.\n\nTo test run the API query\n`http://localhost:5601/api/security_ai_assistant/current_user/conversations/_find?page=1&per_page=99&fields=id,users,apiConfig.connectorId`\nand makes sure the only provided fields are returned in the result.\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"7afe813b35ff4e1cd97be50dbaec2dec554eed26"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Yuliia Naumenko <jo.naumenko@gmail.com>
…lastic#212482) (elastic#212988) # Backport This will backport the following commits from `main` to `8.x`: - [[Performance][Security Solution][3/4] - Sourcerer performance (elastic#212482)](elastic#212482) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Michael Olorunnisola","email":"michael.olorunnisola@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T21:06:38Z","message":"[Performance][Security Solution][3/4] - Sourcerer performance (elastic#212482)\n\n## Summary\nPart 3 of https://github.com/elastic/kibana/pull/212173\n\n### Testing\nFor setup see testing section here:\nhttps://github.com/elastic/pull/212173#issue-2870522020\n\nTesting this work is a bit more `console.log` related, as the primary\naim of many of these changes was to limit the amount of re-renders\ncaused by state changes within many of the sourcerer utils. React is\nrelatively fast at handling many of these re-renders, but considering\nthe widespread usage of `useSourcererDataView` and the top level\nlocation of `useInitSourcerer`, it was worth taking care of some low\nhanging fruit.\n\n### Background\n\nThe changes in this PR centered around limiting the number of re-renders\nthat were being caused unnecessarily in `useSourcererDataView` and\n`useInitSourcerer` by identifying some quick wins.\n\nComments regarding the changes can be found in the PR diffs\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n### Identify risks\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"98b52804d500f31f2fc80f47f478427a52f20630","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","v9.0.0","Team:Threat Hunting:Investigations","backport:all-open","v8.18.0","v9.1.0","v8.19.0"],"title":"[Performance][Security Solution][3/4] - Sourcerer performance","number":212482,"url":"https://github.com/elastic/kibana/pull/212482","mergeCommit":{"message":"[Performance][Security Solution][3/4] - Sourcerer performance (elastic#212482)\n\n## Summary\nPart 3 of https://github.com/elastic/kibana/pull/212173\n\n### Testing\nFor setup see testing section here:\nhttps://github.com/elastic/pull/212173#issue-2870522020\n\nTesting this work is a bit more `console.log` related, as the primary\naim of many of these changes was to limit the amount of re-renders\ncaused by state changes within many of the sourcerer utils. React is\nrelatively fast at handling many of these re-renders, but considering\nthe widespread usage of `useSourcererDataView` and the top level\nlocation of `useInitSourcerer`, it was worth taking care of some low\nhanging fruit.\n\n### Background\n\nThe changes in this PR centered around limiting the number of re-renders\nthat were being caused unnecessarily in `useSourcererDataView` and\n`useInitSourcerer` by identifying some quick wins.\n\nComments regarding the changes can be found in the PR diffs\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n### Identify risks\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"98b52804d500f31f2fc80f47f478427a52f20630"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212482","number":212482,"mergeCommit":{"message":"[Performance][Security Solution][3/4] - Sourcerer performance (elastic#212482)\n\n## Summary\nPart 3 of https://github.com/elastic/kibana/pull/212173\n\n### Testing\nFor setup see testing section here:\nhttps://github.com/elastic/pull/212173#issue-2870522020\n\nTesting this work is a bit more `console.log` related, as the primary\naim of many of these changes was to limit the amount of re-renders\ncaused by state changes within many of the sourcerer utils. React is\nrelatively fast at handling many of these re-renders, but considering\nthe widespread usage of `useSourcererDataView` and the top level\nlocation of `useInitSourcerer`, it was worth taking care of some low\nhanging fruit.\n\n### Background\n\nThe changes in this PR centered around limiting the number of re-renders\nthat were being caused unnecessarily in `useSourcererDataView` and\n`useInitSourcerer` by identifying some quick wins.\n\nComments regarding the changes can be found in the PR diffs\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] [Unit or functional\ntests](https://www.elastic.co/guide/en/kibana/master/development-tests.html)\nwere updated or added to match the most common scenarios\n### Identify risks\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"98b52804d500f31f2fc80f47f478427a52f20630"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Michael Olorunnisola <michael.olorunnisola@elastic.co>
…tic#212994) # Backport This will backport the following commits from `main` to `8.x`: - [[controls] remove id from explicit input (elastic#211851)](elastic#211851) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Nathan Reese","email":"reese.nathan@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T21:31:42Z","message":"[controls] remove id from explicit input (elastic#211851)\n\nPart of `EmbeddableInput` type removal.\n\nPR removes `EmbeddableInput` from controls plugin. Part of this effort\nis removing `id` key from `controlConfig/explicitInput`.\n\nWhile investigating this PR, I found it odd that\n`ControlGroupApi.serializeState` returned controls in shape `[ { ...rest\n} ]` while `ControlGroupFactory.deserializeState` expected to receive\ncontrols in the shape `[ { id, ...rest }]`. The only reason this works\nis that\nsrc/platform/plugins/shared/dashboard/server/content_management/v3/transform_utils.ts\n`controlGroupInputOut` adds `id` to each object in `controls`. This PR\nalso resolves this and updates `ControlGroupApi.serializeState` to\nreturn controls in shape `[ { id, ...rest } ]`\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"decf5feba554df9c14301d4f47bba969d2bd727e","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["Team:Presentation","release_note:skip","project:embeddableRebuild","backport:version","v9.1.0","v8.19.0"],"title":"[controls] remove id from explicit input","number":211851,"url":"https://github.com/elastic/kibana/pull/211851","mergeCommit":{"message":"[controls] remove id from explicit input (elastic#211851)\n\nPart of `EmbeddableInput` type removal.\n\nPR removes `EmbeddableInput` from controls plugin. Part of this effort\nis removing `id` key from `controlConfig/explicitInput`.\n\nWhile investigating this PR, I found it odd that\n`ControlGroupApi.serializeState` returned controls in shape `[ { ...rest\n} ]` while `ControlGroupFactory.deserializeState` expected to receive\ncontrols in the shape `[ { id, ...rest }]`. The only reason this works\nis that\nsrc/platform/plugins/shared/dashboard/server/content_management/v3/transform_utils.ts\n`controlGroupInputOut` adds `id` to each object in `controls`. This PR\nalso resolves this and updates `ControlGroupApi.serializeState` to\nreturn controls in shape `[ { id, ...rest } ]`\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"decf5feba554df9c14301d4f47bba969d2bd727e"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211851","number":211851,"mergeCommit":{"message":"[controls] remove id from explicit input (elastic#211851)\n\nPart of `EmbeddableInput` type removal.\n\nPR removes `EmbeddableInput` from controls plugin. Part of this effort\nis removing `id` key from `controlConfig/explicitInput`.\n\nWhile investigating this PR, I found it odd that\n`ControlGroupApi.serializeState` returned controls in shape `[ { ...rest\n} ]` while `ControlGroupFactory.deserializeState` expected to receive\ncontrols in the shape `[ { id, ...rest }]`. The only reason this works\nis that\nsrc/platform/plugins/shared/dashboard/server/content_management/v3/transform_utils.ts\n`controlGroupInputOut` adds `id` to each object in `controls`. This PR\nalso resolves this and updates `ControlGroupApi.serializeState` to\nreturn controls in shape `[ { id, ...rest } ]`\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>\nCo-authored-by: Elastic Machine <elasticmachine@users.noreply.github.com>","sha":"decf5feba554df9c14301d4f47bba969d2bd727e"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Nathan Reese <reese.nathan@elastic.co>
…211831) (elastic#212997) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Assistant] Conversation pagination refactor (elastic#211831)](elastic#211831) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Steph Milovic","email":"stephanie.milovic@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T20:41:20Z","message":"[Security Assistant] Conversation pagination refactor (elastic#211831)","sha":"095fc222aa541bf50f57c11958c16eb4c04a282c","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:fix","Team: SecuritySolution","Team:Security Generative AI","backport:version","v9.1.0","v8.19.0"],"title":"[Security Assistant] Conversation pagination refactor","number":211831,"url":"https://github.com/elastic/kibana/pull/211831","mergeCommit":{"message":"[Security Assistant] Conversation pagination refactor (elastic#211831)","sha":"095fc222aa541bf50f57c11958c16eb4c04a282c"}},"sourceBranch":"main","suggestedTargetBranches":["8.x"],"targetPullRequestStates":[{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/211831","number":211831,"mergeCommit":{"message":"[Security Assistant] Conversation pagination refactor (elastic#211831)","sha":"095fc222aa541bf50f57c11958c16eb4c04a282c"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT-->
…oint advanced policy setting (elastic#212439) (elastic#213011) # Backport This will backport the following commits from `main` to `8.x`: - [[Elastic Defend] Add `windows.ransomware.dump_process` for endpoint advanced policy setting (elastic#212439)](elastic#212439) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Christophe Alladoum","email":"85187342+calladoum-elastic@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-03-04T00:57:20Z","message":"[Elastic Defend] Add `windows.ransomware.dump_process` for endpoint advanced policy setting (elastic#212439)\n\n## Summary\n\nThis PR exposes `windows.ransomware.dump_process` as an advanced policy\noption for Elastic Defend.\nIf enabled, this option will make the endpoint generate a memory dump of\nthe ransomware process before killing it, assisting the ransomware\ninvestigation process.\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"e9813b8c72d4479c8f023a3dccc94842fdac29f0","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:skip","Team:Defend Workflows","backport:version","v8.18.0","v8.15.6","v9.1.0","v8.19.0","v8.17.3","v8.16.5"],"title":"[Elastic Defend] Add `windows.ransomware.dump_process` for endpoint advanced policy setting","number":212439,"url":"https://github.com/elastic/kibana/pull/212439","mergeCommit":{"message":"[Elastic Defend] Add `windows.ransomware.dump_process` for endpoint advanced policy setting (elastic#212439)\n\n## Summary\n\nThis PR exposes `windows.ransomware.dump_process` as an advanced policy\noption for Elastic Defend.\nIf enabled, this option will make the endpoint generate a memory dump of\nthe ransomware process before killing it, assisting the ransomware\ninvestigation process.\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"e9813b8c72d4479c8f023a3dccc94842fdac29f0"}},"sourceBranch":"main","suggestedTargetBranches":["8.18","8.15","8.x","8.17","8.16"],"targetPullRequestStates":[{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.15","label":"v8.15.6","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212439","number":212439,"mergeCommit":{"message":"[Elastic Defend] Add `windows.ransomware.dump_process` for endpoint advanced policy setting (elastic#212439)\n\n## Summary\n\nThis PR exposes `windows.ransomware.dump_process` as an advanced policy\noption for Elastic Defend.\nIf enabled, this option will make the endpoint generate a memory dump of\nthe ransomware process before killing it, assisting the ransomware\ninvestigation process.\n\n\n### Checklist\n\nCheck the PR satisfies following conditions. \n\nReviewers should verify this PR satisfies this list as well.\n\n- [x] Any text added follows [EUI's writing\nguidelines](https://elastic.github.io/eui/#/guidelines/writing), uses\nsentence case text and includes [i18n\nsupport](https://github.com/elastic/kibana/blob/main/src/platform/packages/shared/kbn-i18n/README.md)\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"e9813b8c72d4479c8f023a3dccc94842fdac29f0"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.17","label":"v8.17.3","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.16","label":"v8.16.5","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Christophe Alladoum <85187342+calladoum-elastic@users.noreply.github.com>
…ion (elastic#212936) (elastic#213001) # Backport This will backport the following commits from `main` to `8.x`: - [[Obs AI Assistant] Improve instructions for the summarize function (elastic#212936)](elastic#212936) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Viduni Wickramarachchi","email":"viduni.wickramarachchi@elastic.co"},"sourceCommit":{"committedDate":"2025-03-03T23:56:55Z","message":"[Obs AI Assistant] Improve instructions for the summarize function (elastic#212936)","sha":"ec127e271c5dd23f3c6c11eb410d478030cfb486","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:fix","v9.0.0","Team:Obs AI Assistant","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Obs AI Assistant] Improve instructions for the summarize function","number":212936,"url":"https://github.com/elastic/kibana/pull/212936","mergeCommit":{"message":"[Obs AI Assistant] Improve instructions for the summarize function (elastic#212936)","sha":"ec127e271c5dd23f3c6c11eb410d478030cfb486"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212936","number":212936,"mergeCommit":{"message":"[Obs AI Assistant] Improve instructions for the summarize function (elastic#212936)","sha":"ec127e271c5dd23f3c6c11eb410d478030cfb486"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Viduni Wickramarachchi <viduni.wickramarachchi@elastic.co>
…ner (elastic#212463) (elastic#213018) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Assistant] Fix Product documentation installation banner (elastic#212463)](elastic#212463) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"Patryk Kopyciński","email":"contact@patrykkopycinski.com"},"sourceCommit":{"committedDate":"2025-03-04T01:28:35Z","message":"[Security Assistant] Fix Product documentation installation banner (elastic#212463)\n\n## Summary\n\nFixes logic on fresh cluster where the ELSER was not started yet, in\nthis case API reports `status` as `uninstalled`, but it doesn't mean\nthat the Product documentation was actually uninstall, but rather it's a\ndefault state.\nAdded internal `product_documentation_status` to KB status API to make\nsure we keep track of the status internally and present the banner only\nif the docs were intentionally uninstalled\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"f0d66691b855fe65291fa8f889def3d3f695fe06","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["bug","release_note:skip","v9.0.0","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Security Assistant] Fix Product documentation installation banner ","number":212463,"url":"https://github.com/elastic/kibana/pull/212463","mergeCommit":{"message":"[Security Assistant] Fix Product documentation installation banner (elastic#212463)\n\n## Summary\n\nFixes logic on fresh cluster where the ELSER was not started yet, in\nthis case API reports `status` as `uninstalled`, but it doesn't mean\nthat the Product documentation was actually uninstall, but rather it's a\ndefault state.\nAdded internal `product_documentation_status` to KB status API to make\nsure we keep track of the status internally and present the banner only\nif the docs were intentionally uninstalled\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"f0d66691b855fe65291fa8f889def3d3f695fe06"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/212463","number":212463,"mergeCommit":{"message":"[Security Assistant] Fix Product documentation installation banner (elastic#212463)\n\n## Summary\n\nFixes logic on fresh cluster where the ELSER was not started yet, in\nthis case API reports `status` as `uninstalled`, but it doesn't mean\nthat the Product documentation was actually uninstall, but rather it's a\ndefault state.\nAdded internal `product_documentation_status` to KB status API to make\nsure we keep track of the status internally and present the banner only\nif the docs were intentionally uninstalled\n\n---------\n\nCo-authored-by: kibanamachine <42973632+kibanamachine@users.noreply.github.com>","sha":"f0d66691b855fe65291fa8f889def3d3f695fe06"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: Patryk Kopyciński <contact@patrykkopycinski.com>
…ent (elastic#213029) (elastic#213035) # Backport This will backport the following commits from `main` to `8.x`: - [[Security Solution] Alert flyout - fix suppressed alerts alignment (elastic#213029)](elastic#213029) <!--- Backport version: 9.6.6 --> ### Questions ? Please refer to the [Backport tool documentation](https://github.com/sorenlouv/backport) <!--BACKPORT [{"author":{"name":"christineweng","email":"18648970+christineweng@users.noreply.github.com"},"sourceCommit":{"committedDate":"2025-03-04T06:01:51Z","message":"[Security Solution] Alert flyout - fix suppressed alerts alignment (elastic#213029)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/204184\n\nBefore\n\n\n\n\nAfter\n\n\n\n\n### Checklist\n\n- [ ] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)","sha":"6b6eb43183c3ed06fa475a894cffe2dc7d020d01","branchLabelMapping":{"^v9.1.0$":"main","^v8.19.0$":"8.x","^v(\\d+).(\\d+).\\d+$":"$1.$2"}},"sourcePullRequest":{"labels":["release_note:fix","v9.0.0","backport:version","v8.18.0","v9.1.0","v8.19.0"],"title":"[Security Solution] Alert flyout - fix suppressed alerts alignment","number":213029,"url":"https://github.com/elastic/kibana/pull/213029","mergeCommit":{"message":"[Security Solution] Alert flyout - fix suppressed alerts alignment (elastic#213029)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/204184\n\nBefore\n\n\n\n\nAfter\n\n\n\n\n### Checklist\n\n- [ ] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)","sha":"6b6eb43183c3ed06fa475a894cffe2dc7d020d01"}},"sourceBranch":"main","suggestedTargetBranches":["9.0","8.18","8.x"],"targetPullRequestStates":[{"branch":"9.0","label":"v9.0.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"8.18","label":"v8.18.0","branchLabelMappingKey":"^v(\\d+).(\\d+).\\d+$","isSourceBranch":false,"state":"NOT_CREATED"},{"branch":"main","label":"v9.1.0","branchLabelMappingKey":"^v9.1.0$","isSourceBranch":true,"state":"MERGED","url":"https://github.com/elastic/kibana/pull/213029","number":213029,"mergeCommit":{"message":"[Security Solution] Alert flyout - fix suppressed alerts alignment (elastic#213029)\n\n## Summary\n\nRef: https://github.com/elastic/kibana/issues/204184\n\nBefore\n\n\n\n\nAfter\n\n\n\n\n### Checklist\n\n- [ ] The PR description includes the appropriate Release Notes section,\nand the correct `release_note:*` label is applied per the\n[guidelines](https://www.elastic.co/guide/en/kibana/master/contributing.html#kibana-release-notes-process)","sha":"6b6eb43183c3ed06fa475a894cffe2dc7d020d01"}},{"branch":"8.x","label":"v8.19.0","branchLabelMappingKey":"^v8.19.0$","isSourceBranch":false,"state":"NOT_CREATED"}]}] BACKPORT--> Co-authored-by: christineweng <18648970+christineweng@users.noreply.github.com>
botelastic
bot
added
the
ci:project-deploy-observability
🤖 GitHub commentsExpand to view the GitHub comments
Just comment with:
|
SoniaSanzV
removed
the
ci:project-deploy-observability
|
Thank you for the review @sabarasaba! I've addressed the feedback in this PR #213058 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Fixes #123469
Summary
In the deprecations table, the icon that we show in the resolution column can be confused with a call to action by some users. To avoid them to click it with no result, this PR changes the behavior of the table so clicking in anywhere in the row opens the resolution flyout. As agreed with @jovana-andjelkovic, I left the original link in the Issue column.
How to test
Demo
Video
UA-click-row.mov