Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[FR][DAC] Consideration: expose a callback function within kibana export-rules to organize the output #3625

Open
brokensound77 opened this issue Apr 27, 2024 · 0 comments
Open

[FR][DAC] Consideration: expose a callback function within kibana export-rules to organize the output #3625

brokensound77 opened this issue Apr 27, 2024 · 0 comments
Assignees
@Mikaayenson @eric-forte-elastic
Labels
detections-as-code enhancement New feature or request

Comments

@brokensound77
Copy link
Collaborator

Note: this work will target the DAC-feature branch

related to #3407

This is a consideration and not a commitment to work at this point. We should review the feasibility and supportability. If it is doable and not deemed maintainable, we can move the example code to the DAC reference for users to manually implement.

Many users organize the rules in a specific manner, but the kibana export-rules command downloads them flat. There have been requests to add a callback function to pass in code specifically to organize the save.

IMO, I don't know if this is worth the work. While it would be easy to implement, the onus should be on the implementer. An easy resolution to this problem would be to:

  • store it to a temp directory as flat
  • call your own function on the flat output to organize accordingly
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Mikaayenson Mikaayenson

@eric-forte-elastic eric-forte-elastic

Labels
detections-as-code enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@Mikaayenson @brokensound77 @eric-forte-elastic