-
Notifications
You must be signed in to change notification settings - Fork 5.1k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add AlertRules to microsoft.security insights 2021 10 01 #15657
Add AlertRules to microsoft.security insights 2021 10 01 #15657
Conversation
…rsion stable/2020-01-01 to version 2021-10-01
Hi, @anat-gilenson Thanks for your PR. I am workflow bot for review process. Here are some small tips. Any feedback about review process or workflow bot, pls contact swagger and tools team. vsswagger@microsoft.com |
[Call for Action] To better understand Azure service dev/test scenario, and support Azure service developer better on Swagger and REST API related tests in early phase, please help to fill in with this survey https://aka.ms/SurveyForEarlyPhase. It will take 5 to 10 minutes. If you already complete survey, please neglect this comment. Thanks. |
Hi, @anat-gilenson your PR are labelled with WaitForARMFeedback. A notification email will be sent out shortly afterwards to notify ARM review board(armapireview@microsoft.com). |
Swagger Validation Report
|
Rule | Message |
---|---|
R4018 - OperationsApiResponseSchema |
The response schema of operations API '/providers/Microsoft.SecurityInsights/operations' does not match the ARM specification. Please standardize the schema. Location: Microsoft.SecurityInsights/stable/2021-10-01/operations.json#L37 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L49 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L100 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L149 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L201 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L246 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L294 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L340 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L395 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L443 |
R4029 - UniqueClientParameterName |
Do not have duplicate name of client parameter name, make sure every client parameter name unique. Client parameter #/parameters/SubscriptionIdParameter conflicted with #/parameters/SubscriptionId. Location: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L488 |
Since operation 'ThreatIntelligenceIndicator_QueryIndicators' response has model definition 'x-ms-pageable', it should be of the form '_list'. Note: If you have already shipped an SDK on top of this spec, fixing this warning may introduce a breaking change. Location: Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#L311 |
|
Consider using x-ms-client-flatten to provide a better end user experience Location: Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#L1028 |
|
Based on the response model schema, operation 'ThreatIntelligenceIndicatorMetrics_List' might be pageable. Consider adding the x-ms-pageable extension. Location: Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#L352 |
|
The child tracked resource, 'comments' with immediate parent 'Incident', must have a list by immediate parent operation. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L1731 |
|
The child tracked resource, 'relations' with immediate parent 'Incident', must have a list by immediate parent operation. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L3137 |
|
The child tracked resource, 'watchlistItems' with immediate parent 'Watchlist', must have a list by immediate parent operation. Location: Microsoft.SecurityInsights/stable/2021-10-01/Watchlists.json#L621 |
|
Guid used in model definition 'AccountEntityProperties' for property 'objectGuid'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L851 |
|
Guid used in model definition 'ClientInfo' for property 'objectId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L983 |
|
Guid used in model definition 'IncidentOwnerInfo' for property 'objectId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L1961 |
|
Guid used in model definition 'IoTDeviceEntityProperties' for property 'iotSecurityAgentId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L2219 |
|
Guid used in model definition 'MailboxEntityProperties' for property 'externalDirectoryObjectId'. Usage of Guid is not recommanded. If GUIDs are absolutely required in your service, please get sign off from the Azure API review board. Location: Microsoft.SecurityInsights/stable/2021-10-01/Incidents.json#L2388 |
The following errors/warnings exist before current PR submission:
Rule | Message |
---|---|
AutoRest exception |
"readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-10", "details":"Duplicated model name with non-identical definitions" |
️️✔️
Avocado succeeded [Detail] [Expand]
Validation passes for Avocado.
️️✔️
ModelValidation succeeded [Detail] [Expand]
Validation passes for ModelValidation.
️️✔️
SemanticValidation succeeded [Detail] [Expand]
Validation passes for SemanticValidation.
️❌
Cross-Version Breaking Changes: 15 Errors, 54 Warnings failed [Detail]
- Compared Swaggers (Based on Oad v0.9.0)
- current:stable/2021-10-01/AlertRules.json compared with base:stable/2020-01-01/AlertRules.json
- current:stable/2021-10-01/AlertRules.json compared with base:preview/2021-03-01-preview/AlertRules.json
Only 22 items are listed, please refer to log for more details.
The following breaking changes are detected by comparison with latest preview version:
Only 22 items are listed, please refer to log for more details.
Rule | Message |
---|---|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRules' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L37:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRules/{ruleId}' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L85:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRules/{ruleId}/actions' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L246:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRules/{ruleId}/actions/{actionId}' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L297:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRuleTemplates' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L455:5 |
|
The new version is missing a path that was found in the old version. Was path '/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/{operationalInsightsResourceProvider}/workspaces/{workspaceName}/providers/Microsoft.SecurityInsights/alertRuleTemplates/{alertRuleTemplateId}' removed or restructured? Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L503:5 |
|
The new version is missing a definition that was found in the old version. Was 'AlertRuleKindEnum' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L598:3 |
|
The new version is missing a definition that was found in the old version. Was 'MLBehaviorAnalyticsAlertRule' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L598:3 |
|
The new version is missing a definition that was found in the old version. Was 'MLBehaviorAnalyticsAlertRuleTemplate' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L598:3 |
|
The new version is missing a definition that was found in the old version. Was 'ThreatIntelligenceAlertRule' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L598:3 |
|
The new version is missing a definition that was found in the old version. Was 'ThreatIntelligenceAlertRuleTemplate' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L522:3 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L598:3 |
|
The new version is missing a client parameter that was found in the old version. Was 'OperationalInsightsResourceProvider' removed or renamed? New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1396:3 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L552:3 |
|
The new version is removing enum value(s) 'MLBehaviorAnalytics, ThreatIntelligence' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L649:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L607:9 |
|
The new version is removing enum value(s) 'MLBehaviorAnalytics, ThreatIntelligence' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L692:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L660:9 |
|
The new version is removing enum value(s) 'PreAttack' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L832:5 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L839:5 |
|
The new version is removing enum value(s) 'PreAttack' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L905:11 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L1019:11 |
|
The new version is removing enum value(s) 'MLBehaviorAnalytics, ThreatIntelligence' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L649:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L607:9 |
|
The new version is removing enum value(s) 'PreAttack' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L982:11 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L1054:15 |
|
The new version is removing enum value(s) 'MLBehaviorAnalytics, ThreatIntelligence' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L692:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L660:9 |
|
The new version is removing enum value(s) 'Office 365 Advanced Threat Protection, Microsoft Defender Advanced Threat Protection' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1024:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L1214:9 |
|
The new version is removing enum value(s) 'MLBehaviorAnalytics, ThreatIntelligence' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L649:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L607:9 |
|
The new version is removing enum value(s) 'Office 365 Advanced Threat Protection, Microsoft Defender Advanced Threat Protection' from the old version. New: Microsoft.SecurityInsights/stable/2021-10-01/AlertRules.json#L1024:9 Old: Microsoft.SecurityInsights/preview/2021-03-01-preview/AlertRules.json#L1214:9 |
️⚠️
[Staging] SDK Track2 Validation: 2 Warnings warning [Detail]
- The following tags are being changed in this PR
- securityinsights/resource-manager/readme.md#package-2021-10
- securityinsights/resource-manager/readme.md#package-2021-04-01-only
- securityinsights/resource-manager/readme.md#package-2020-01
- securityinsights/resource-manager/readme.md#package-2021-03-preview-only
- securityinsights/resource-manager/readme.md#package-2019-01-preview
Rule | Message |
---|---|
"readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-10", "details":"The schema 'components·1qaufw0·schemas·threatintelligenceindicatorproperties·properties·extensions·additionalproperties' has no type or format information whatsoever. Location:\n file:///home/vsts/work/1/azure-rest-api-specs/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/stable/2021-10-01/ThreatIntelligence.json#/components/schemas/components·1qaufw0·schemas·threatintelligenceindicatorproperties·properties·extensions·additionalproperties" |
|
"readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-04-01-only", "details":"The schema 'components·1qaufw0·schemas·threatintelligenceindicatorproperties·properties·extensions·additionalproperties' has no type or format information whatsoever. Location:\n file:///home/vsts/work/1/azure-rest-api-specs/specification/securityinsights/resource-manager/Microsoft.SecurityInsights/stable/2021-04-01/ThreatIntelligence.json#/components/schemas/components·1qaufw0·schemas·threatintelligenceindicatorproperties·properties·extensions·additionalproperties" |
|
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-10", "details":"> Installing AutoRest extension '@microsoft.azure/openapi-validator' (1.8.0)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-10", "details":"> Installed AutoRest extension '@microsoft.azure/openapi-validator' (1.8.0->1.8.0)" |
The following errors/warnings exist before current PR submission:
Rule | Message |
---|---|
AutorestCore/Exception |
"readme":"securityinsights/resource-manager/readme.md", "tag":"package-2019-01-preview", "details":"Error: Semantic validation failed. There was some errors" |
"readme":"securityinsights/resource-manager/readme.md", "tag":"package-2020-01", "details":"Schema 'MCASDataConnectorDataTypes' has a property 'alerts' that is already declared the parent schema 'AlertsDataTypeOfDataConnector' but isn't significantly different. The property has been removed from MCASDataConnectorDataTypes" |
|
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-10", "details":"> Loading AutoRest extension '@autorest/modelerfour' (4.15.456->4.15.456)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-04-01-only", "details":"> Loading AutoRest extension '@microsoft.azure/openapi-validator' (1.8.0->1.8.0)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-04-01-only", "details":"> Loading AutoRest extension '@autorest/modelerfour' (4.15.456->4.15.456)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2020-01", "details":"> Loading AutoRest extension '@microsoft.azure/openapi-validator' (1.8.0->1.8.0)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2020-01", "details":"> Loading AutoRest extension '@autorest/modelerfour' (4.15.456->4.15.456)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-03-preview-only", "details":"> Loading AutoRest extension '@microsoft.azure/openapi-validator' (1.8.0->1.8.0)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2021-03-preview-only", "details":"> Loading AutoRest extension '@autorest/modelerfour' (4.15.456->4.15.456)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2019-01-preview", "details":"> Loading AutoRest extension '@microsoft.azure/openapi-validator' (1.8.0->1.8.0)" |
💬 AutorestCore/Exception | "readme":"securityinsights/resource-manager/readme.md", "tag":"package-2019-01-preview", "details":"> Loading AutoRest extension '@autorest/modelerfour' (4.15.456->4.15.456)" |
️️✔️
[Staging] PrettierCheck succeeded [Detail] [Expand]
Validation passes for PrettierCheck.
️️✔️
[Staging] SpellCheck succeeded [Detail] [Expand]
Validation passes for SpellCheck.
Swagger Generation Artifacts
|
Hi @anat-gilenson, Your PR has some issues. Please fix the CI sequentially by following the order of
|
@@ -0,0 +1,1442 @@ | |||
{ |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Did you take the version from 2021-03-01-preview?
because it seems that the enrichment models are missing
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
No, this version is based on the previous Stable.
You'll have to add any changes to the previous Stable after this PR is merged.
@anat-gilenson |
5961c8d
into
Azure:dev-securityinsights-Microsoft.SecurityInsights-2021-10-01
* Adds base for updating Microsoft.SecurityInsights from version stable/2021-04-01 to version 2021-10-01 * Updates readme * Updates API version in new specs and examples * Add AlertRules to microsoft.security insights 2021 10 01 (#15657) * Adds base for updating Microsoft.SecurityInsight's AlertRules from version stable/2020-01-01 to version 2021-10-01 * Updates API version in AlertRules specs and examples * Use common types in AlertRules.json and remove redundant SecurityInsights * Add AlertRules to readme * Copy action examples for alert rules * Add type:object where missing * Align CloudError with rest of the resources in this version * Update readme Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Use newest common types to align with rest of Azure (#16130) * Use newest common types to align with rest of Azure * Use ErrorResponse instead of CloudError in operations Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Add AlertRules Stable version to 2021-10-01 (#16268) * Add AlertRules Stable version to 2021-10-01 * Fix missing alignment in common types * prettier fixes * move tactics and severity to common * fix common types file extension * more prettier fixes * Add template version field * prettier * added version to required fields * dummy change to trigger checks again * Add onboarding states to new stable version (#16290) * Add onboarding states to new stable version * Update readme.md * cr fix - remove unused params * Add missing resources 2021 10 01 (#16666) * Add missing resources and examples from 2020-01-01 * Update version in added resources and examples * Use existing common types * Remove unnesessary SecurityInsights.json * Update readme * Use sentinel common types in Incidents and Watchlist * Extract and common IncidentInfo and IncidentSeverity * Extract EntityTypes * Correct double allOf in EntityTypes * update readme * Remove eventGroupingSettings and entityMappings from GetAlertRuleTemplateById example. * rename operations.json Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Fix analytics templates model (#16689) * add missing properties to scheduled template * prettier fixes * restore templates example after merge * fix templates example after merge and run prettier * Use CloudError instead of ErrorResponse to align with preview versions and our back-end. (#17472) * Automation - Stable Version (#17491) * First * readMe * cloudError * CloudError * schema * prettier * Fix * test * fix identifier * fix description * fix lable * fix lable * ownerInfo * Fix * types * conditionMaxLength Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Done (#17728) Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Correct 2021 10 01 (#17830) * Remove OperationalInsightsResourceProvider parameter in ThreatIntelligence * Remove OperationalInsightProviderParameter from Watchlist * Align stable operation names with preview * Add missing disciminator property in ThreatIntelligence * Done (#17844) Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Align enum names with preview (#17831) * Fix 2021 10 01 validation errors (#17937) * Add x-ms-identifiers to all arrays * Add operations_list example * Add x-ms-identifier in all arrays * Run prettier * Fix spelling error * Add isDataAction to operation schema (#18018) Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> Co-authored-by: laithhisham <49263932+laithhisham@users.noreply.github.com> Co-authored-by: royrein <37300636+royrein@users.noreply.github.com> Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> Co-authored-by: Arthur Ning <57385816+akning-ms@users.noreply.github.com>
) * Adds base for updating Microsoft.SecurityInsights from version stable/2021-04-01 to version 2021-10-01 * Updates readme * Updates API version in new specs and examples * Add AlertRules to microsoft.security insights 2021 10 01 (Azure#15657) * Adds base for updating Microsoft.SecurityInsight's AlertRules from version stable/2020-01-01 to version 2021-10-01 * Updates API version in AlertRules specs and examples * Use common types in AlertRules.json and remove redundant SecurityInsights * Add AlertRules to readme * Copy action examples for alert rules * Add type:object where missing * Align CloudError with rest of the resources in this version * Update readme Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Use newest common types to align with rest of Azure (Azure#16130) * Use newest common types to align with rest of Azure * Use ErrorResponse instead of CloudError in operations Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Add AlertRules Stable version to 2021-10-01 (Azure#16268) * Add AlertRules Stable version to 2021-10-01 * Fix missing alignment in common types * prettier fixes * move tactics and severity to common * fix common types file extension * more prettier fixes * Add template version field * prettier * added version to required fields * dummy change to trigger checks again * Add onboarding states to new stable version (Azure#16290) * Add onboarding states to new stable version * Update readme.md * cr fix - remove unused params * Add missing resources 2021 10 01 (Azure#16666) * Add missing resources and examples from 2020-01-01 * Update version in added resources and examples * Use existing common types * Remove unnesessary SecurityInsights.json * Update readme * Use sentinel common types in Incidents and Watchlist * Extract and common IncidentInfo and IncidentSeverity * Extract EntityTypes * Correct double allOf in EntityTypes * update readme * Remove eventGroupingSettings and entityMappings from GetAlertRuleTemplateById example. * rename operations.json Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> * Fix analytics templates model (Azure#16689) * add missing properties to scheduled template * prettier fixes * restore templates example after merge * fix templates example after merge and run prettier * Use CloudError instead of ErrorResponse to align with preview versions and our back-end. (Azure#17472) * Automation - Stable Version (Azure#17491) * First * readMe * cloudError * CloudError * schema * prettier * Fix * test * fix identifier * fix description * fix lable * fix lable * ownerInfo * Fix * types * conditionMaxLength Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Done (Azure#17728) Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Correct 2021 10 01 (Azure#17830) * Remove OperationalInsightsResourceProvider parameter in ThreatIntelligence * Remove OperationalInsightProviderParameter from Watchlist * Align stable operation names with preview * Add missing disciminator property in ThreatIntelligence * Done (Azure#17844) Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> * Align enum names with preview (Azure#17831) * Fix 2021 10 01 validation errors (Azure#17937) * Add x-ms-identifiers to all arrays * Add operations_list example * Add x-ms-identifier in all arrays * Run prettier * Fix spelling error * Add isDataAction to operation schema (Azure#18018) Co-authored-by: Anat Gilenson <anatgilenson@microsoft.com> Co-authored-by: laithhisham <49263932+laithhisham@users.noreply.github.com> Co-authored-by: royrein <37300636+royrein@users.noreply.github.com> Co-authored-by: Roy Reinhorn <roreinho@microsoft.com> Co-authored-by: Arthur Ning <57385816+akning-ms@users.noreply.github.com>
MSFT employees can try out our new experience at OpenAPI Hub - one location for using our validation tools and finding your workflow.
Changelog
Add a changelog entry for this PR by answering the following questions:
Contribution checklist:
If any further question about AME onboarding or validation tools, please view the FAQ.
ARM API Review Checklist
Otherwise your PR may be subject to ARM review requirements. Complete the following:
Check this box if any of the following apply to the PR so that label “WaitForARMFeedback” will be added automatically to begin ARM API Review. Failure to comply may result in delays to the manifest.
-[X] To review changes efficiently, ensure you copy the existing version into the new directory structure for first commit and then push new changes, including version updates, in separate commits.
Ensure you've reviewed following guidelines including ARM resource provider contract and REST guidelines. Estimated time (4 hours). This is required before you can request review from ARM API Review board.
If you are blocked on ARM review and want to get the PR merged with urgency, please get the ARM oncall for reviews (RP Manifest Approvers team under Azure Resource Manager service) from IcM and reach out to them.
Breaking Change Review Checklist
If any of the following scenarios apply to the PR, request approval from the Breaking Change Review Board as defined in the Breaking Change Policy.
Action: to initiate an evaluation of the breaking change, create a new intake using the template for breaking changes. Addition details on the process and office hours are on the Breaking change Wiki.
Please follow the link to find more details on PR review process.