Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update to Safe yaml constructor #201

Closed
wants to merge 1 commit into from
Closed

Update to Safe yaml constructor #201

wants to merge 1 commit into from

Conversation

dreamer-89
Copy link
Member

@dreamer-89 dreamer-89 commented Dec 16, 2022
edited
Loading

Signed-off-by: Suraj Singh surajrider@gmail.com

Description

Based on security best practices, changeing default to safe yaml constructor [1].

https://bitbucket.org/snakeyaml/snakeyaml/wiki/Documentation

Issues Resolved

opensearch-project/OpenSearch#5576

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

@dreamer-89
Update to Safe yaml constructor
e659764 
Signed-off-by: Suraj Singh <surajrider@gmail.com>
@dreamer-89 dreamer-89 requested a review from a team December 16, 2022 23:02
@codecov-commenter
Copy link

codecov-commenter commented Dec 16, 2022
edited
Loading

Codecov Report

Merging #201 (e659764) into main (9579e51) will increase coverage by 0.01%.
The diff coverage is 100.00%.

@@             Coverage Diff              @@
##               main     #201      +/-   ##
============================================
+ Coverage     39.06%   39.08%   +0.01%     
- Complexity      890      891       +1     
============================================
  Files           176      176              
  Lines          6722     6722              
  Branches        820      820              
============================================
+ Hits           2626     2627       +1     
  Misses         3854     3854              
+ Partials        242      241       -1
Impacted Files Coverage Δ
...rch/securityanalytics/rules/objects/SigmaRule.java 91.01% <100.00%> (ø)
...g/opensearch/securityanalytics/model/Detector.java 70.58% <0.00%> (+0.34%) ⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

@sbcd90
Copy link
Collaborator

sbcd90 commented Dec 16, 2022

@dreamer-89 this is the same pr as this one https://github.com/opensearch-project/security-analytics/pull/198/files

@dreamer-89
Copy link
Member Author

dreamer-89 commented Dec 16, 2022
edited
Loading

@dreamer-89 this is the same pr as this one https://github.com/opensearch-project/security-analytics/pull/198/files

Thanks @sbcd90 for pointing this out. Closing in favour of #198

@dreamer-89 dreamer-89 closed this Dec 16, 2022
riysaxen-amzn pushed a commit to riysaxen-amzn/security-analytics that referenced this pull request Feb 20, 2024
@djindjic
YAML Rule Editor Support (opensearch-project#201)
597f677 
* remove unused service

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* refactor form state

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* extract model and mappers

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* Extract Visual Rule Editor Component

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* fix missing default id

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml editor

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml rule editor mappings

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* more mapping guards

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* remove console.log's

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* YAML editor - cypress test

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml editor snapshot test

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* rename model

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* more validations on yaml editor

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* use eui form validation error box

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* re-generate snapshot

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>
riysaxen-amzn pushed a commit to riysaxen-amzn/security-analytics that referenced this pull request Feb 20, 2024
@djindjic
YAML Rule Editor Support (opensearch-project#201)
da5a081 
* remove unused service

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* refactor form state

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* extract model and mappers

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* Extract Visual Rule Editor Component

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* fix missing default id

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml editor

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml rule editor mappings

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* more mapping guards

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* remove console.log's

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* YAML editor - cypress test

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml editor snapshot test

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* rename model

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* more validations on yaml editor

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* use eui form validation error box

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* re-generate snapshot

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>
riysaxen-amzn pushed a commit to riysaxen-amzn/security-analytics that referenced this pull request Feb 20, 2024
@djindjic
YAML Rule Editor Support (opensearch-project#201)
6b6af15 
* remove unused service

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* refactor form state

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* extract model and mappers

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* Extract Visual Rule Editor Component

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* fix missing default id

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml editor

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml rule editor mappings

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* more mapping guards

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* remove console.log's

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* YAML editor - cypress test

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* yaml editor snapshot test

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* rename model

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* more validations on yaml editor

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* use eui form validation error box

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

* re-generate snapshot

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>

Signed-off-by: Aleksandar Djindjic <djindjic@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@dreamer-89 @codecov-commenter @sbcd90