Skip to content

[8.18] Logged ES queries now provided for new terms, machine learning, custom query, threshold rule types #6655

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 6 commits into from
Apr 3, 2025
Merged

[8.18] Logged ES queries now provided for new terms, machine learning, custom query, threshold rule types #6655

merged 6 commits into from
Apr 3, 2025

Conversation

nastasha-solomon
Copy link
Contributor

@nastasha-solomon nastasha-solomon commented Mar 22, 2025
edited
Loading

Partially addresses #6494. Twin 9.0 and Serverless PR is: elastic/docs-content#890

Made the following changes:

  • Updated the note to show that the feature is now supported for all rule types except indicator match rules
  • Made some slight revisions to intro para
  • Updated third bullet under step 3 to show that only the first two Elasticsearch queries are provided in the preview

Preview: View your rule's Elasticsearch queries (optional)

@nastasha-solomon nastasha-solomon added Team: Detection Engine Priority: High Issues that are time-sensitive and/or are of high customer importance Effort: Small Issues that can be resolved quickly Docset: ESS Issues that apply to docs in the Stack release v8.18.0 labels Mar 22, 2025
@nastasha-solomon nastasha-solomon self-assigned this Mar 22, 2025
@github-actions GitHub Actions
Copy link

A documentation preview will be available soon.

Request a new doc build by commenting
  • Rebuild this PR: run docs-build
  • Rebuild this PR and all Elastic docs: run docs-build rebuild

run docs-build is much faster than run docs-build rebuild. A rebuild should only be needed in rare situations.

If your PR continues to fail for an unknown reason, the doc build pipeline may be broken. Elastic employees can check the pipeline status here.

@nastasha-solomon nastasha-solomon mentioned this pull request Mar 22, 2025
Merged
@nastasha-solomon nastasha-solomon marked this pull request as ready for review March 22, 2025 16:14
@nastasha-solomon nastasha-solomon requested a review from a team as a code owner March 22, 2025 16:14
@nastasha-solomon nastasha-solomon changed the title [8.18] Logged ES queries now provided for new terms, machine learning, custom qury, threshold rule types [8.18] Logged ES queries now provided for new terms, machine learning, custom query, threshold rule types Mar 23, 2025
natasha-moore-elastic
natasha-moore-elastic approved these changes Mar 24, 2025
View reviewed changes
Copy link
Contributor

@natasha-moore-elastic natasha-moore-elastic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

🚢 🚢 🚢

nastasha-solomon added a commit to elastic/docs-content that referenced this pull request Apr 3, 2025
@nastasha-solomon
[9.0 & Serverless] Logged ES queries now provided for new terms, mach…
dc59900 
…ine learning, custom query, threshold rule types (#890)

Partially addresses
elastic/security-docs#6494. Is the twin PR of
elastic/security-docs#6655.

Preview: [View your rule's Elasticsearch queries
(optional)](https://docs-v3-preview.elastic.dev/elastic/docs-content/pull/890/solutions/security/detect-and-alert/create-detection-rule#view-rule-es-queries)
@nastasha-solomon nastasha-solomon merged commit ba7f483 into 8.x Apr 3, 2025
4 checks passed
mergify bot pushed a commit that referenced this pull request Apr 3, 2025
@nastasha-solomon @mergify
[8.18] Logged ES queries now provided for new terms, machine learning…
fa9bbea 
…, custom query, threshold rule types (#6655)

* First draft

* Update rules-ui-create.asciidoc

* extra space

(cherry picked from commit ba7f483)
@mergify mergify bot mentioned this pull request Apr 3, 2025
Merged
nastasha-solomon added a commit that referenced this pull request Apr 3, 2025
@mergify @nastasha-solomon
[8.18] Logged ES queries now provided for new terms, machine learning…
f78eade 
…, custom query, threshold rule types (#6655) (#6704)

* First draft

* Update rules-ui-create.asciidoc

* extra space

(cherry picked from commit ba7f483)

Co-authored-by: Nastasha Solomon <79124755+nastasha-solomon@users.noreply.github.com>
@nastasha-solomon nastasha-solomon mentioned this pull request Apr 4, 2025
Closed
25 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@vitaliidm vitaliidm vitaliidm approved these changes

@natasha-moore-elastic natasha-moore-elastic natasha-moore-elastic approved these changes

Assignees

@nastasha-solomon nastasha-solomon

Labels
Docset: ESS Issues that apply to docs in the Stack release Effort: Small Issues that can be resolved quickly Priority: High Issues that are time-sensitive and/or are of high customer importance Team: Detection Engine v8.18.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@nastasha-solomon @vitaliidm @natasha-moore-elastic