Thomas Ward

Hold off on implementation juuuust yet, I think i discovered a bug in the underlying MISP API where it doesn't properly search those fields. Investigating via API calls to my...

Refer to https://github.com/MISP/MISP/issues/8471 - while this does not *block* the implemntation of `last_seen` and `first_seen` in PyMISP API integrations, it does mean that you will get **screwy results** until this...

> @teward Do you see DNS errors around these posts? Another one just now https://metasmoke.erwaysoftware.com/post/352301 I have never seen DNS errors in the system on this. However, what needs to...

> https://metasmoke.erwaysoftware.com/post/391301 Are you sure that's an instance? Specified domain's NS records are Cloudflare, are we flagging Cloudflare as suspicious now?

> Just for reference: Thomas Ward is also working on an [alternative implementation](https://github.com/Charcoal-SE/SmokeDetector/tree/zero-length-link) of this using BeautifulSoup to parse the HTML. This is dependent entirely on Makyen and others finishing...

has it been considered to *not* reply directly to the link though? ANd instead say "still up" and then directly post a link to the chat timeline? I know, it...

> Complete compatibility would require d.r.resolve(search=True) but this works without it so far. I'm curious, but why would we need `search=True` to make things work right? `search` uses **local search...

NACK on the review - fix your Lint first.

I would suggest splitting the "New Commands" and "Refactoring' into completely separate PRs. I say this because I'd rather review the commands themselves independently of the "Refactor blacklists". So I'm...

On the SD side, if we have a status indication test for if MS is up or down, we can simply implement a Queue type object (extended to what we...