ocsf-schema icon indicating copy to clipboard operation
ocsf-schema copied to clipboard
verified publisher icon ocsf

Create `agent` Object, add `agent` and `owner` to `endpoint`

Open jonrau-at-queryai opened this issue 1 year ago • 1 comments

Related Issue:

#986

Description of changes:

  • Adds owner to device, endpoint, and network_endpoint.
  • Adds a new agent object that defines various sensors and agent.
  • Adds the new agent object to device, resource, and endpoint.
  • Adds is_applied Boolean to policy.

jonrau-at-queryai avatar Mar 15 '24 18:03 jonrau-at-queryai

Please check the description of name : "Organization name for the Autonomous System."

pagbabian-splunk avatar Mar 19 '24 16:03 pagbabian-splunk

@jonrau-at-queryai Looks good to me, just approved, but there is a small merge conflict with the CHANGELOG. Could you update that so we can merge?

mikeradka avatar Mar 25 '24 19:03 mikeradka

@jonrau-at-queryai Looks good to me, just approved, but there is a small merge conflict with the CHANGELOG. Could you update that so we can merge?

Looks like it's fixed, but it bumped all of the approvals again.

jonrau-at-queryai avatar Mar 25 '24 19:03 jonrau-at-queryai

Looks great! Thanks for this addition, its super useful!

Aniak5 avatar Mar 28 '24 14:03 Aniak5