Skip to content

Issues: elastic/integrations

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

889 Open 3,137 Closed
889 Open 3,137 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

[entityanalytics_okta]: provide alternative Okta Integration Network (OIN) authentication needs:triage
#12663 opened Feb 7, 2025 by buzzdeee
Normalize Third-Party EDR Alert Severity to Elastic’s Severity Scale impact:high Short-term priority; add to current release, or definitely next. Integration:crowdstrike CrowdStrike Integration:m365_defender Microsoft M365 Defender Integration:microsoft_defender_endpoint Microsoft Defender for Endpoint Integration:sentinel_one SentinelOne Team:Security-Service Integrations Security Service Integrations Team [elastic/security-service-integrations]
#12662 opened Feb 7, 2025 by raqueltabuyo
7 tasks
1
[entityanalytics_okta]: it would be awesome to see user information in /app/security/users/name/<username>/... needs:triage
#12661 opened Feb 7, 2025 by buzzdeee
[entityanalytics_okta]: deactivated users aren't imported needs:triage
#12658 opened Feb 7, 2025 by buzzdeee
[entityanalytics_okta]: device assets mixed up with user assets needs:triage
#12657 opened Feb 7, 2025 by buzzdeee
[entityanalytics_okta]: failed to get user group membership for <USERID>: context canceled needs:triage
#12653 opened Feb 7, 2025 by buzzdeee
[Documentation] Clarify use case of Windows Event Logs across multiple integrations docs documentation Improvements or additions to documentation Integration:system System Integration:windows Windows Integration:winlog Custom Windows Event Logs needs:triage Team:Security-Windows Platform Security Windows Platform Team [elastic/sec-windows-platform]
#12642 opened Feb 6, 2025 by mmahacek
1
AWS CloudWatch logs: should we change the predefined custom dataset name? bug Something isn't working, use only for issues Integration:aws AWS Team:obs-ds-hosted-services Label for the Observability Hosted Services team [elastic/obs-ds-hosted-services]
#12640 opened Feb 6, 2025 by zmoog
2
[auth0]: some events are marked as event.type: indicator, without filling any other indicator related fields needs:triage
#12622 opened Feb 5, 2025 by buzzdeee
[aws] Missing cfn-init execution logs in AWS Cloudformation Integration:aws AWS needs:triage Team:Security-Service Integrations Security Service Integrations Team [elastic/security-service-integrations]
#12621 opened Feb 5, 2025 by cpascale43
1
[Stack 9.0.0-SNAPSHOT] [snyk] Failing test daily: system test: default in snyk.audit_logs Integration:snyk Snyk Team:Security-Service Integrations Security Service Integrations Team [elastic/security-service-integrations]
#12617 opened Feb 5, 2025 by mrodm
[LogsDB] [Stack 8.18.0-SNAPSHOT] [system] Failing test daily: system test: journald in system.auth automation flaky-test Unstable or unreliable test cases.
#12611 opened Feb 5, 2025 by elastic-vault-github-plugin-prod bot
[Stack 8.18.0-SNAPSHOT] [system] Failing test daily: system test: journald in system.auth automation flaky-test Unstable or unreliable test cases.
#12610 opened Feb 5, 2025 by elastic-vault-github-plugin-prod bot
[Prisma Cloud] Change the mappings of fields with description and recommendation for policies
#12609 opened Feb 4, 2025 by leandrojmp
[Fortinet Fortigate] Split current dataset into multiple datasets Integration:fortinet_fortigate Fortinet FortiGate Firewall Logs Team:Security-Deployment and Devices Deployment and Devices Security team [elastic/sec-deployment-and-devices]
#12606 opened Feb 4, 2025 by leandrojmp
1
[Mimecast] Add event.kind: alert to parse alert data bug Something isn't working, use only for issues Integration:mimecast Mimecast Team:Service-Integrations Label for the Service Integrations team
#12600 opened Feb 4, 2025 by raqueltabuyo
3 tasks
[Office365] Populate ECS message Field with Alert Titles for DLP Exchange Alerts enhancement New feature or request Integration:o365 Microsoft Office 365 Team:Service-Integrations Label for the Service Integrations team
#12598 opened Feb 4, 2025 by raqueltabuyo
[Office365] Populate ECS message Field with Alert Titles from SecurityComplianceAlerts enhancement New feature or request Integration:o365 Microsoft Office 365 Team:Service-Integrations Label for the Service Integrations team
#12596 opened Feb 4, 2025 by raqueltabuyo
[system]: System integration using deprecated synthetic _source mode needs:triage
#12591 opened Feb 4, 2025 by BauerMullac
[cisco_asa]: Username captured contains quotes bug Something isn't working, use only for issues Integration:cisco_asa Cisco ASA Team:Security-Deployment and Devices Deployment and Devices Security team [elastic/sec-deployment-and-devices]
#12576 opened Feb 3, 2025 by swg0101
1
1
[m365_defender.alert] Prefer: include-unknown-enum-members Header Integration:m365_defender Microsoft M365 Defender needs:triage Team:Security-Service Integrations Security Service Integrations Team [elastic/security-service-integrations]
#12573 opened Feb 3, 2025 by Oliver-Re
1
[SentinelOne] Parse and Populate ECS message Field with Alert Titles enhancement New feature or request Integration:sentinel_one SentinelOne mapping/pipeline issue Team:Security-Service Integrations Security Service Integrations Team [elastic/security-service-integrations]
#12564 opened Feb 3, 2025 by raqueltabuyo
1
Standardize Ingested Data for Response Actions enhancement New feature or request Integration:crowdstrike CrowdStrike Integration:m365_defender Microsoft M365 Defender Integration:microsoft_defender_endpoint Microsoft Defender for Endpoint Integration:sentinel_one SentinelOne mapping/pipeline issue Team:Security-Service Integrations Security Service Integrations Team [elastic/security-service-integrations]
#12563 opened Feb 3, 2025 by raqueltabuyo
1
Ensure Consistency Across Ingested Data for Analyzer Development enhancement New feature or request Integration:crowdstrike CrowdStrike Integration:m365_defender Microsoft M365 Defender Integration:microsoft_defender_endpoint Microsoft Defender for Endpoint Integration:sentinel_one SentinelOne Team:Service-Integrations Label for the Service Integrations team
#12562 opened Feb 3, 2025 by raqueltabuyo
[LogsDB] [Stack 8.18.0-SNAPSHOT] [aws] Failing test daily: system test: data_granularity in aws.ec2_metrics automation flaky-test Unstable or unreliable test cases. Integration:aws AWS Team:obs-ds-hosted-services Label for the Observability Hosted Services team [elastic/obs-ds-hosted-services]
#12558 opened Feb 1, 2025 by elastic-vault-github-plugin-prod bot
ProTip! no:milestone will show everything without a milestone.