diff --git a/.generator/schemas/v2/openapi.yaml b/.generator/schemas/v2/openapi.yaml
index 59c7b8b08ef..be9a2271b2b 100644
--- a/.generator/schemas/v2/openapi.yaml
+++ b/.generator/schemas/v2/openapi.yaml
@@ -458,20 +458,6 @@ components:
items:
$ref: '#/components/schemas/GetIssueIncludeQueryParameterItem'
type: array
- HistoricalJobID:
- description: The ID of the job.
- in: path
- name: job_id
- required: true
- schema:
- type: string
- HistoricalSignalID:
- description: The ID of the historical signal.
- in: path
- name: histsignal_id
- required: true
- schema:
- type: string
IncidentAttachmentFilterQueryParameter:
description: Specifies which types of attachments are included in the response.
explode: false
@@ -1091,6 +1077,20 @@ components:
required: true
schema:
type: string
+ ThreatHuntingJobID:
+ description: The ID of the job.
+ in: path
+ name: job_id
+ required: true
+ schema:
+ type: string
+ ThreatHuntingSignalID:
+ description: The ID of the threat hunting signal.
+ in: path
+ name: histsignal_id
+ required: true
+ schema:
+ type: string
UserID:
description: The ID of the user.
in: path
@@ -11815,7 +11815,7 @@ components:
- GZIP
- DEFLATE
ConvertJobResultsToSignalsAttributes:
- description: Attributes for converting historical job results to signals.
+ description: Attributes for converting threat hunting job results to signals.
properties:
id:
description: Request ID.
@@ -11847,7 +11847,7 @@ components:
- notifications
type: object
ConvertJobResultsToSignalsData:
- description: Data for converting historical job results to signals.
+ description: Data for converting threat hunting job results to signals.
properties:
attributes:
$ref: '#/components/schemas/ConvertJobResultsToSignalsAttributes'
@@ -11862,7 +11862,7 @@ components:
x-enum-varnames:
- HISTORICALDETECTIONSJOBRESULTSIGNALCONVERSION
ConvertJobResultsToSignalsRequest:
- description: Request for converting historical job results to signals.
+ description: Request for converting threat hunting job results to signals.
properties:
data:
$ref: '#/components/schemas/ConvertJobResultsToSignalsData'
@@ -22191,130 +22191,6 @@ components:
- type
- value
type: object
- HistoricalJobDataType:
- description: Type of payload.
- enum:
- - historicalDetectionsJob
- type: string
- x-enum-varnames:
- - HISTORICALDETECTIONSJOB
- HistoricalJobListMeta:
- description: Metadata about the list of jobs.
- properties:
- totalCount:
- description: Number of jobs in the list.
- format: int32
- maximum: 2147483647
- type: integer
- type: object
- HistoricalJobOptions:
- description: Job options.
- properties:
- detectionMethod:
- $ref: '#/components/schemas/SecurityMonitoringRuleDetectionMethod'
- evaluationWindow:
- $ref: '#/components/schemas/SecurityMonitoringRuleEvaluationWindow'
- impossibleTravelOptions:
- $ref: '#/components/schemas/SecurityMonitoringRuleImpossibleTravelOptions'
- keepAlive:
- $ref: '#/components/schemas/SecurityMonitoringRuleKeepAlive'
- maxSignalDuration:
- $ref: '#/components/schemas/SecurityMonitoringRuleMaxSignalDuration'
- newValueOptions:
- $ref: '#/components/schemas/SecurityMonitoringRuleNewValueOptions'
- sequenceDetectionOptions:
- $ref: '#/components/schemas/SecurityMonitoringRuleSequenceDetectionOptions'
- thirdPartyRuleOptions:
- $ref: '#/components/schemas/SecurityMonitoringRuleThirdPartyOptions'
- type: object
- HistoricalJobQuery:
- description: Query for selecting logs analyzed by the historical job.
- properties:
- aggregation:
- $ref: '#/components/schemas/SecurityMonitoringRuleQueryAggregation'
- dataSource:
- $ref: '#/components/schemas/SecurityMonitoringStandardDataSource'
- distinctFields:
- description: Field for which the cardinality is measured. Sent as an array.
- items:
- description: Field.
- type: string
- type: array
- groupByFields:
- description: Fields to group by.
- items:
- description: Field.
- type: string
- type: array
- hasOptionalGroupByFields:
- default: false
- description: When false, events without a group-by value are ignored by
- the query. When true, events with missing group-by fields are processed
- with `N/A`, replacing the missing values.
- example: false
- type: boolean
- metrics:
- description: Group of target fields to aggregate over when using the sum,
- max, geo data, or new value aggregations. The sum, max, and geo data aggregations
- only accept one value in this list, whereas the new value aggregation
- accepts up to five values.
- items:
- description: Field.
- type: string
- type: array
- name:
- description: Name of the query.
- type: string
- query:
- description: Query to run on logs.
- example: a > 3
- type: string
- type: object
- HistoricalJobResponse:
- description: Historical job response.
- properties:
- data:
- $ref: '#/components/schemas/HistoricalJobResponseData'
- type: object
- HistoricalJobResponseAttributes:
- description: Historical job attributes.
- properties:
- createdAt:
- description: Time when the job was created.
- type: string
- createdByHandle:
- description: The handle of the user who created the job.
- type: string
- createdByName:
- description: The name of the user who created the job.
- type: string
- createdFromRuleId:
- description: ID of the rule used to create the job (if it is created from
- a rule).
- type: string
- jobDefinition:
- $ref: '#/components/schemas/JobDefinition'
- jobName:
- description: Job name.
- type: string
- jobStatus:
- description: Job status.
- type: string
- modifiedAt:
- description: Last modification time of the job.
- type: string
- type: object
- HistoricalJobResponseData:
- description: Historical job response data.
- properties:
- attributes:
- $ref: '#/components/schemas/HistoricalJobResponseAttributes'
- id:
- description: ID of the job.
- type: string
- type:
- $ref: '#/components/schemas/HistoricalJobDataType'
- type: object
HourlyUsage:
description: Hourly usage for a product family for an org.
properties:
@@ -26495,7 +26371,7 @@ components:
type: string
type: object
JobCreateResponse:
- description: Run a historical job response.
+ description: Run a threat hunting job response.
properties:
data:
$ref: '#/components/schemas/JobCreateResponseData'
@@ -26507,10 +26383,10 @@ components:
description: ID of the created job.
type: string
type:
- $ref: '#/components/schemas/HistoricalJobDataType'
+ $ref: '#/components/schemas/ThreatHuntingJobDataType'
type: object
JobDefinition:
- description: Definition of a historical job.
+ description: Definition of a threat hunting job.
properties:
calculatedFields:
description: Calculated fields.
@@ -26549,11 +26425,11 @@ components:
example: Excessive number of failed attempts.
type: string
options:
- $ref: '#/components/schemas/HistoricalJobOptions'
+ $ref: '#/components/schemas/ThreatHuntingJobOptions'
queries:
description: Queries for selecting logs analyzed by the job.
items:
- $ref: '#/components/schemas/HistoricalJobQuery'
+ $ref: '#/components/schemas/ThreatHuntingJobQuery'
type: array
referenceTables:
description: Reference tables used in the queries.
@@ -26590,7 +26466,8 @@ components:
- message
type: object
JobDefinitionFromRule:
- description: Definition of a historical job based on a security monitoring rule.
+ description: Definition of a threat hunting job based on a security monitoring
+ rule.
properties:
from:
description: Starting time of data analyzed by the job.
@@ -27290,17 +27167,6 @@ components:
- data
- meta
type: object
- ListHistoricalJobsResponse:
- description: List of historical jobs.
- properties:
- data:
- description: Array containing the list of historical jobs.
- items:
- $ref: '#/components/schemas/HistoricalJobResponseData'
- type: array
- meta:
- $ref: '#/components/schemas/HistoricalJobListMeta'
- type: object
ListKindCatalogResponse:
description: List kind response.
properties:
@@ -27468,6 +27334,17 @@ components:
- _NAME
- USER_COUNT
- _USER_COUNT
+ ListThreatHuntingJobsResponse:
+ description: List of threat hunting jobs.
+ properties:
+ data:
+ description: Array containing the list of threat hunting jobs.
+ items:
+ $ref: '#/components/schemas/ThreatHuntingJobResponseData'
+ type: array
+ meta:
+ $ref: '#/components/schemas/ThreatHuntingJobListMeta'
+ type: object
ListVulnerabilitiesResponse:
description: The expected response schema when listing vulnerabilities.
properties:
@@ -41523,14 +41400,18 @@ components:
$ref: '#/components/schemas/RumRetentionFilterData'
type: array
type: object
- RunHistoricalJobRequest:
- description: Run a historical job request.
+ RunRetentionFilterName:
+ description: The name of a RUM retention filter.
+ example: Retention filter for session
+ type: string
+ RunThreatHuntingJobRequest:
+ description: Run a threat hunting job request.
properties:
data:
- $ref: '#/components/schemas/RunHistoricalJobRequestData'
+ $ref: '#/components/schemas/RunThreatHuntingJobRequestData'
type: object
- RunHistoricalJobRequestAttributes:
- description: Run a historical job request.
+ RunThreatHuntingJobRequestAttributes:
+ description: Run a threat hunting job request.
properties:
fromRule:
$ref: '#/components/schemas/JobDefinitionFromRule'
@@ -41540,25 +41421,21 @@ components:
jobDefinition:
$ref: '#/components/schemas/JobDefinition'
type: object
- RunHistoricalJobRequestData:
- description: Data for running a historical job request.
+ RunThreatHuntingJobRequestData:
+ description: Data for running a threat hunting job request.
properties:
attributes:
- $ref: '#/components/schemas/RunHistoricalJobRequestAttributes'
+ $ref: '#/components/schemas/RunThreatHuntingJobRequestAttributes'
type:
- $ref: '#/components/schemas/RunHistoricalJobRequestDataType'
+ $ref: '#/components/schemas/RunThreatHuntingJobRequestDataType'
type: object
- RunHistoricalJobRequestDataType:
+ RunThreatHuntingJobRequestDataType:
description: Type of data.
enum:
- historicalDetectionsJobCreate
type: string
x-enum-varnames:
- HISTORICALDETECTIONSJOBCREATE
- RunRetentionFilterName:
- description: The name of a RUM retention filter.
- example: Retention filter for session
- type: string
SAMLAssertionAttribute:
description: SAML assertion attribute.
properties:
@@ -50443,6 +50320,130 @@ components:
description: Offset type.
type: string
type: object
+ ThreatHuntingJobDataType:
+ description: Type of payload.
+ enum:
+ - historicalDetectionsJob
+ type: string
+ x-enum-varnames:
+ - HISTORICALDETECTIONSJOB
+ ThreatHuntingJobListMeta:
+ description: Metadata about the list of jobs.
+ properties:
+ totalCount:
+ description: Number of jobs in the list.
+ format: int32
+ maximum: 2147483647
+ type: integer
+ type: object
+ ThreatHuntingJobOptions:
+ description: Job options.
+ properties:
+ detectionMethod:
+ $ref: '#/components/schemas/SecurityMonitoringRuleDetectionMethod'
+ evaluationWindow:
+ $ref: '#/components/schemas/SecurityMonitoringRuleEvaluationWindow'
+ impossibleTravelOptions:
+ $ref: '#/components/schemas/SecurityMonitoringRuleImpossibleTravelOptions'
+ keepAlive:
+ $ref: '#/components/schemas/SecurityMonitoringRuleKeepAlive'
+ maxSignalDuration:
+ $ref: '#/components/schemas/SecurityMonitoringRuleMaxSignalDuration'
+ newValueOptions:
+ $ref: '#/components/schemas/SecurityMonitoringRuleNewValueOptions'
+ sequenceDetectionOptions:
+ $ref: '#/components/schemas/SecurityMonitoringRuleSequenceDetectionOptions'
+ thirdPartyRuleOptions:
+ $ref: '#/components/schemas/SecurityMonitoringRuleThirdPartyOptions'
+ type: object
+ ThreatHuntingJobQuery:
+ description: Query for selecting logs analyzed by the threat hunting job.
+ properties:
+ aggregation:
+ $ref: '#/components/schemas/SecurityMonitoringRuleQueryAggregation'
+ dataSource:
+ $ref: '#/components/schemas/SecurityMonitoringStandardDataSource'
+ distinctFields:
+ description: Field for which the cardinality is measured. Sent as an array.
+ items:
+ description: Field.
+ type: string
+ type: array
+ groupByFields:
+ description: Fields to group by.
+ items:
+ description: Field.
+ type: string
+ type: array
+ hasOptionalGroupByFields:
+ default: false
+ description: When false, events without a group-by value are ignored by
+ the query. When true, events with missing group-by fields are processed
+ with `N/A`, replacing the missing values.
+ example: false
+ type: boolean
+ metrics:
+ description: Group of target fields to aggregate over when using the sum,
+ max, geo data, or new value aggregations. The sum, max, and geo data aggregations
+ only accept one value in this list, whereas the new value aggregation
+ accepts up to five values.
+ items:
+ description: Field.
+ type: string
+ type: array
+ name:
+ description: Name of the query.
+ type: string
+ query:
+ description: Query to run on logs.
+ example: a > 3
+ type: string
+ type: object
+ ThreatHuntingJobResponse:
+ description: Threat hunting job response.
+ properties:
+ data:
+ $ref: '#/components/schemas/ThreatHuntingJobResponseData'
+ type: object
+ ThreatHuntingJobResponseAttributes:
+ description: Threat hunting job attributes.
+ properties:
+ createdAt:
+ description: Time when the job was created.
+ type: string
+ createdByHandle:
+ description: The handle of the user who created the job.
+ type: string
+ createdByName:
+ description: The name of the user who created the job.
+ type: string
+ createdFromRuleId:
+ description: ID of the rule used to create the job (if it is created from
+ a rule).
+ type: string
+ jobDefinition:
+ $ref: '#/components/schemas/JobDefinition'
+ jobName:
+ description: Job name.
+ type: string
+ jobStatus:
+ description: Job status.
+ type: string
+ modifiedAt:
+ description: Last modification time of the job.
+ type: string
+ type: object
+ ThreatHuntingJobResponseData:
+ description: Threat hunting job response data.
+ properties:
+ attributes:
+ $ref: '#/components/schemas/ThreatHuntingJobResponseAttributes'
+ id:
+ description: ID of the job.
+ type: string
+ type:
+ $ref: '#/components/schemas/ThreatHuntingJobDataType'
+ type: object
TimeAggregation:
description: 'Time aggregation period (in seconds) is used to aggregate the
results of the notification rule evaluation.
@@ -76493,7 +76494,7 @@ paths:
permissions:
- incident_settings_write
x-unstable: '**Note**: This endpoint is deprecated.'
- /api/v2/siem-historical-detections/histsignals:
+ /api/v2/siem-threat-hunting/histsignals:
get:
description: List hist signals.
operationId: ListSecurityMonitoringHistsignals
@@ -76534,7 +76535,7 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/histsignals/search:
+ /api/v2/siem-threat-hunting/histsignals/search:
get:
description: Search hist signals.
operationId: SearchSecurityMonitoringHistsignals
@@ -76574,12 +76575,12 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/histsignals/{histsignal_id}:
+ /api/v2/siem-threat-hunting/histsignals/{histsignal_id}:
get:
description: Get a hist signal's details.
operationId: GetSecurityMonitoringHistsignal
parameters:
- - $ref: '#/components/parameters/HistoricalSignalID'
+ - $ref: '#/components/parameters/ThreatHuntingSignalID'
responses:
'200':
content:
@@ -76610,10 +76611,10 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/jobs:
+ /api/v2/siem-threat-hunting/jobs:
get:
- description: List historical jobs.
- operationId: ListHistoricalJobs
+ description: List threat hunting jobs.
+ operationId: ListThreatHuntingJobs
parameters:
- $ref: '#/components/parameters/PageSize'
- $ref: '#/components/parameters/PageNumber'
@@ -76636,7 +76637,7 @@ paths:
content:
application/json:
schema:
- $ref: '#/components/schemas/ListHistoricalJobsResponse'
+ $ref: '#/components/schemas/ListThreatHuntingJobsResponse'
description: OK
'400':
$ref: '#/components/responses/BadRequestResponse'
@@ -76648,20 +76649,20 @@ paths:
- apiKeyAuth: []
appKeyAuth: []
- AuthZ: []
- summary: List historical jobs
+ summary: List threat hunting jobs
tags:
- Security Monitoring
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
post:
- description: Run a historical job.
- operationId: RunHistoricalJob
+ description: Run a threat hunting job.
+ operationId: RunThreatHuntingJob
requestBody:
content:
application/json:
schema:
- $ref: '#/components/schemas/RunHistoricalJobRequest'
+ $ref: '#/components/schemas/RunThreatHuntingJobRequest'
required: true
responses:
'201':
@@ -76685,7 +76686,7 @@ paths:
appKeyAuth: []
- AuthZ:
- security_monitoring_rules_write
- summary: Run a historical job
+ summary: Run a threat hunting job
tags:
- Security Monitoring
x-codegen-request-body-name: body
@@ -76696,7 +76697,7 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/jobs/signal_convert:
+ /api/v2/siem-threat-hunting/jobs/signal_convert:
post:
description: Convert a job result to a signal.
operationId: ConvertJobResultToSignal
@@ -76730,12 +76731,12 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/jobs/{job_id}:
+ /api/v2/siem-threat-hunting/jobs/{job_id}:
delete:
description: Delete an existing job.
- operationId: DeleteHistoricalJob
+ operationId: DeleteThreatHuntingJob
parameters:
- - $ref: '#/components/parameters/HistoricalJobID'
+ - $ref: '#/components/parameters/ThreatHuntingJobID'
responses:
'204':
description: OK
@@ -76763,15 +76764,15 @@ paths:
Please check the documentation regularly for updates.'
get:
description: Get a job's details.
- operationId: GetHistoricalJob
+ operationId: GetThreatHuntingJob
parameters:
- - $ref: '#/components/parameters/HistoricalJobID'
+ - $ref: '#/components/parameters/ThreatHuntingJobID'
responses:
'200':
content:
application/json:
schema:
- $ref: '#/components/schemas/HistoricalJobResponse'
+ $ref: '#/components/schemas/ThreatHuntingJobResponse'
description: OK
'400':
$ref: '#/components/responses/BadRequestResponse'
@@ -76796,12 +76797,12 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/jobs/{job_id}/cancel:
+ /api/v2/siem-threat-hunting/jobs/{job_id}/cancel:
patch:
- description: Cancel a historical job.
- operationId: CancelHistoricalJob
+ description: Cancel a threat hunting job.
+ operationId: CancelThreatHuntingJob
parameters:
- - $ref: '#/components/parameters/HistoricalJobID'
+ - $ref: '#/components/parameters/ThreatHuntingJobID'
responses:
'204':
description: OK
@@ -76822,7 +76823,7 @@ paths:
appKeyAuth: []
- AuthZ:
- security_monitoring_rules_write
- summary: Cancel a historical job
+ summary: Cancel a threat hunting job
tags:
- Security Monitoring
x-permission:
@@ -76832,12 +76833,12 @@ paths:
x-unstable: '**Note**: This endpoint is in beta and may be subject to changes.
Please check the documentation regularly for updates.'
- /api/v2/siem-historical-detections/jobs/{job_id}/histsignals:
+ /api/v2/siem-threat-hunting/jobs/{job_id}/histsignals:
get:
description: Get a job's hist signals.
operationId: GetSecurityMonitoringHistsignalsByJobId
parameters:
- - $ref: '#/components/parameters/HistoricalJobID'
+ - $ref: '#/components/parameters/ThreatHuntingJobID'
- $ref: '#/components/parameters/QueryFilterSearch'
- $ref: '#/components/parameters/QueryFilterFrom'
- $ref: '#/components/parameters/QueryFilterTo'
diff --git a/examples/v2/security-monitoring/CancelThreatHuntingJob.java b/examples/v2/security-monitoring/CancelThreatHuntingJob.java
new file mode 100644
index 00000000000..6a9dde27289
--- /dev/null
+++ b/examples/v2/security-monitoring/CancelThreatHuntingJob.java
@@ -0,0 +1,23 @@
+// Cancel a threat hunting job returns "OK" response
+
+import com.datadog.api.client.ApiClient;
+import com.datadog.api.client.ApiException;
+import com.datadog.api.client.v2.api.SecurityMonitoringApi;
+
+public class Example {
+ public static void main(String[] args) {
+ ApiClient defaultClient = ApiClient.getDefaultApiClient();
+ defaultClient.setUnstableOperationEnabled("v2.cancelThreatHuntingJob", true);
+ SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
+
+ try {
+ apiInstance.cancelThreatHuntingJob("job_id");
+ } catch (ApiException e) {
+ System.err.println("Exception when calling SecurityMonitoringApi#cancelThreatHuntingJob");
+ System.err.println("Status code: " + e.getCode());
+ System.err.println("Reason: " + e.getResponseBody());
+ System.err.println("Response headers: " + e.getResponseHeaders());
+ e.printStackTrace();
+ }
+ }
+}
diff --git a/examples/v2/security-monitoring/CancelHistoricalJob.java b/examples/v2/security-monitoring/CancelThreatHuntingJob_1945505845.java
similarity index 64%
rename from examples/v2/security-monitoring/CancelHistoricalJob.java
rename to examples/v2/security-monitoring/CancelThreatHuntingJob_1945505845.java
index 6b02bc4d791..8c4921a724a 100644
--- a/examples/v2/security-monitoring/CancelHistoricalJob.java
+++ b/examples/v2/security-monitoring/CancelThreatHuntingJob_1945505845.java
@@ -7,17 +7,17 @@
public class Example {
public static void main(String[] args) {
ApiClient defaultClient = ApiClient.getDefaultApiClient();
- defaultClient.setUnstableOperationEnabled("v2.cancelHistoricalJob", true);
- defaultClient.setUnstableOperationEnabled("v2.runHistoricalJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.cancelThreatHuntingJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.runThreatHuntingJob", true);
SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
- // there is a valid "historical_job" in the system
- String HISTORICAL_JOB_DATA_ID = System.getenv("HISTORICAL_JOB_DATA_ID");
+ // there is a valid "threat_hunting_job" in the system
+ String THREAT_HUNTING_JOB_DATA_ID = System.getenv("THREAT_HUNTING_JOB_DATA_ID");
try {
- apiInstance.cancelHistoricalJob(HISTORICAL_JOB_DATA_ID);
+ apiInstance.cancelThreatHuntingJob(THREAT_HUNTING_JOB_DATA_ID);
} catch (ApiException e) {
- System.err.println("Exception when calling SecurityMonitoringApi#cancelHistoricalJob");
+ System.err.println("Exception when calling SecurityMonitoringApi#cancelThreatHuntingJob");
System.err.println("Status code: " + e.getCode());
System.err.println("Reason: " + e.getResponseBody());
System.err.println("Response headers: " + e.getResponseHeaders());
diff --git a/examples/v2/security-monitoring/DeleteHistoricalJob.java b/examples/v2/security-monitoring/DeleteThreatHuntingJob.java
similarity index 81%
rename from examples/v2/security-monitoring/DeleteHistoricalJob.java
rename to examples/v2/security-monitoring/DeleteThreatHuntingJob.java
index 393d437eb26..c6b5873532b 100644
--- a/examples/v2/security-monitoring/DeleteHistoricalJob.java
+++ b/examples/v2/security-monitoring/DeleteThreatHuntingJob.java
@@ -7,13 +7,13 @@
public class Example {
public static void main(String[] args) {
ApiClient defaultClient = ApiClient.getDefaultApiClient();
- defaultClient.setUnstableOperationEnabled("v2.deleteHistoricalJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.deleteThreatHuntingJob", true);
SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
try {
- apiInstance.deleteHistoricalJob("job_id");
+ apiInstance.deleteThreatHuntingJob("job_id");
} catch (ApiException e) {
- System.err.println("Exception when calling SecurityMonitoringApi#deleteHistoricalJob");
+ System.err.println("Exception when calling SecurityMonitoringApi#deleteThreatHuntingJob");
System.err.println("Status code: " + e.getCode());
System.err.println("Reason: " + e.getResponseBody());
System.err.println("Response headers: " + e.getResponseHeaders());
diff --git a/examples/v2/security-monitoring/GetHistoricalJob.java b/examples/v2/security-monitoring/GetThreatHuntingJob.java
similarity index 60%
rename from examples/v2/security-monitoring/GetHistoricalJob.java
rename to examples/v2/security-monitoring/GetThreatHuntingJob.java
index 4d7e5be994f..d5de300df5f 100644
--- a/examples/v2/security-monitoring/GetHistoricalJob.java
+++ b/examples/v2/security-monitoring/GetThreatHuntingJob.java
@@ -3,23 +3,23 @@
import com.datadog.api.client.ApiClient;
import com.datadog.api.client.ApiException;
import com.datadog.api.client.v2.api.SecurityMonitoringApi;
-import com.datadog.api.client.v2.model.HistoricalJobResponse;
+import com.datadog.api.client.v2.model.ThreatHuntingJobResponse;
public class Example {
public static void main(String[] args) {
ApiClient defaultClient = ApiClient.getDefaultApiClient();
- defaultClient.setUnstableOperationEnabled("v2.getHistoricalJob", true);
- defaultClient.setUnstableOperationEnabled("v2.runHistoricalJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.getThreatHuntingJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.runThreatHuntingJob", true);
SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
- // there is a valid "historical_job" in the system
- String HISTORICAL_JOB_DATA_ID = System.getenv("HISTORICAL_JOB_DATA_ID");
+ // there is a valid "threat_hunting_job" in the system
+ String THREAT_HUNTING_JOB_DATA_ID = System.getenv("THREAT_HUNTING_JOB_DATA_ID");
try {
- HistoricalJobResponse result = apiInstance.getHistoricalJob(HISTORICAL_JOB_DATA_ID);
+ ThreatHuntingJobResponse result = apiInstance.getThreatHuntingJob(THREAT_HUNTING_JOB_DATA_ID);
System.out.println(result);
} catch (ApiException e) {
- System.err.println("Exception when calling SecurityMonitoringApi#getHistoricalJob");
+ System.err.println("Exception when calling SecurityMonitoringApi#getThreatHuntingJob");
System.err.println("Status code: " + e.getCode());
System.err.println("Reason: " + e.getResponseBody());
System.err.println("Response headers: " + e.getResponseHeaders());
diff --git a/examples/v2/security-monitoring/ListThreatHuntingJobs.java b/examples/v2/security-monitoring/ListThreatHuntingJobs.java
new file mode 100644
index 00000000000..9e1c281b312
--- /dev/null
+++ b/examples/v2/security-monitoring/ListThreatHuntingJobs.java
@@ -0,0 +1,25 @@
+// List threat hunting jobs returns "OK" response
+
+import com.datadog.api.client.ApiClient;
+import com.datadog.api.client.ApiException;
+import com.datadog.api.client.v2.api.SecurityMonitoringApi;
+import com.datadog.api.client.v2.model.ListThreatHuntingJobsResponse;
+
+public class Example {
+ public static void main(String[] args) {
+ ApiClient defaultClient = ApiClient.getDefaultApiClient();
+ defaultClient.setUnstableOperationEnabled("v2.listThreatHuntingJobs", true);
+ SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
+
+ try {
+ ListThreatHuntingJobsResponse result = apiInstance.listThreatHuntingJobs();
+ System.out.println(result);
+ } catch (ApiException e) {
+ System.err.println("Exception when calling SecurityMonitoringApi#listThreatHuntingJobs");
+ System.err.println("Status code: " + e.getCode());
+ System.err.println("Reason: " + e.getResponseBody());
+ System.err.println("Response headers: " + e.getResponseHeaders());
+ e.printStackTrace();
+ }
+ }
+}
diff --git a/examples/v2/security-monitoring/ListHistoricalJobs.java b/examples/v2/security-monitoring/ListThreatHuntingJobs_1365512061.java
similarity index 53%
rename from examples/v2/security-monitoring/ListHistoricalJobs.java
rename to examples/v2/security-monitoring/ListThreatHuntingJobs_1365512061.java
index 63a819d2537..26bc113b907 100644
--- a/examples/v2/security-monitoring/ListHistoricalJobs.java
+++ b/examples/v2/security-monitoring/ListThreatHuntingJobs_1365512061.java
@@ -3,26 +3,26 @@
import com.datadog.api.client.ApiClient;
import com.datadog.api.client.ApiException;
import com.datadog.api.client.v2.api.SecurityMonitoringApi;
-import com.datadog.api.client.v2.api.SecurityMonitoringApi.ListHistoricalJobsOptionalParameters;
-import com.datadog.api.client.v2.model.ListHistoricalJobsResponse;
+import com.datadog.api.client.v2.api.SecurityMonitoringApi.ListThreatHuntingJobsOptionalParameters;
+import com.datadog.api.client.v2.model.ListThreatHuntingJobsResponse;
public class Example {
public static void main(String[] args) {
ApiClient defaultClient = ApiClient.getDefaultApiClient();
- defaultClient.setUnstableOperationEnabled("v2.listHistoricalJobs", true);
- defaultClient.setUnstableOperationEnabled("v2.runHistoricalJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.listThreatHuntingJobs", true);
+ defaultClient.setUnstableOperationEnabled("v2.runThreatHuntingJob", true);
SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
- // there is a valid "historical_job" in the system
- String HISTORICAL_JOB_DATA_ID = System.getenv("HISTORICAL_JOB_DATA_ID");
+ // there is a valid "threat_hunting_job" in the system
+ String THREAT_HUNTING_JOB_DATA_ID = System.getenv("THREAT_HUNTING_JOB_DATA_ID");
try {
- ListHistoricalJobsResponse result =
- apiInstance.listHistoricalJobs(
- new ListHistoricalJobsOptionalParameters().filterQuery("id:string"));
+ ListThreatHuntingJobsResponse result =
+ apiInstance.listThreatHuntingJobs(
+ new ListThreatHuntingJobsOptionalParameters().filterQuery("id:string"));
System.out.println(result);
} catch (ApiException e) {
- System.err.println("Exception when calling SecurityMonitoringApi#listHistoricalJobs");
+ System.err.println("Exception when calling SecurityMonitoringApi#listThreatHuntingJobs");
System.err.println("Status code: " + e.getCode());
System.err.println("Reason: " + e.getResponseBody());
System.err.println("Response headers: " + e.getResponseHeaders());
diff --git a/examples/v2/security-monitoring/RunHistoricalJob.java b/examples/v2/security-monitoring/RunThreatHuntingJob.java
similarity index 74%
rename from examples/v2/security-monitoring/RunHistoricalJob.java
rename to examples/v2/security-monitoring/RunThreatHuntingJob.java
index 7c9413d8637..68106e7ea5d 100644
--- a/examples/v2/security-monitoring/RunHistoricalJob.java
+++ b/examples/v2/security-monitoring/RunThreatHuntingJob.java
@@ -1,44 +1,44 @@
-// Run a historical job returns "Status created" response
+// Run a threat hunting job returns "Status created" response
import com.datadog.api.client.ApiClient;
import com.datadog.api.client.ApiException;
import com.datadog.api.client.v2.api.SecurityMonitoringApi;
-import com.datadog.api.client.v2.model.HistoricalJobOptions;
-import com.datadog.api.client.v2.model.HistoricalJobQuery;
import com.datadog.api.client.v2.model.JobCreateResponse;
import com.datadog.api.client.v2.model.JobDefinition;
-import com.datadog.api.client.v2.model.RunHistoricalJobRequest;
-import com.datadog.api.client.v2.model.RunHistoricalJobRequestAttributes;
-import com.datadog.api.client.v2.model.RunHistoricalJobRequestData;
-import com.datadog.api.client.v2.model.RunHistoricalJobRequestDataType;
+import com.datadog.api.client.v2.model.RunThreatHuntingJobRequest;
+import com.datadog.api.client.v2.model.RunThreatHuntingJobRequestAttributes;
+import com.datadog.api.client.v2.model.RunThreatHuntingJobRequestData;
+import com.datadog.api.client.v2.model.RunThreatHuntingJobRequestDataType;
import com.datadog.api.client.v2.model.SecurityMonitoringRuleCaseCreate;
import com.datadog.api.client.v2.model.SecurityMonitoringRuleEvaluationWindow;
import com.datadog.api.client.v2.model.SecurityMonitoringRuleKeepAlive;
import com.datadog.api.client.v2.model.SecurityMonitoringRuleMaxSignalDuration;
import com.datadog.api.client.v2.model.SecurityMonitoringRuleQueryAggregation;
import com.datadog.api.client.v2.model.SecurityMonitoringRuleSeverity;
+import com.datadog.api.client.v2.model.ThreatHuntingJobOptions;
+import com.datadog.api.client.v2.model.ThreatHuntingJobQuery;
import java.util.Collections;
public class Example {
public static void main(String[] args) {
ApiClient defaultClient = ApiClient.getDefaultApiClient();
- defaultClient.setUnstableOperationEnabled("v2.runHistoricalJob", true);
+ defaultClient.setUnstableOperationEnabled("v2.runThreatHuntingJob", true);
SecurityMonitoringApi apiInstance = new SecurityMonitoringApi(defaultClient);
- RunHistoricalJobRequest body =
- new RunHistoricalJobRequest()
+ RunThreatHuntingJobRequest body =
+ new RunThreatHuntingJobRequest()
.data(
- new RunHistoricalJobRequestData()
- .type(RunHistoricalJobRequestDataType.HISTORICALDETECTIONSJOBCREATE)
+ new RunThreatHuntingJobRequestData()
+ .type(RunThreatHuntingJobRequestDataType.HISTORICALDETECTIONSJOBCREATE)
.attributes(
- new RunHistoricalJobRequestAttributes()
+ new RunThreatHuntingJobRequestAttributes()
.jobDefinition(
new JobDefinition()
.type("log_detection")
.name("Excessive number of failed attempts.")
.queries(
Collections.singletonList(
- new HistoricalJobQuery()
+ new ThreatHuntingJobQuery()
.query("source:non_existing_src_weekend")
.aggregation(
SecurityMonitoringRuleQueryAggregation.COUNT)))
@@ -49,7 +49,7 @@ public static void main(String[] args) {
.status(SecurityMonitoringRuleSeverity.INFO)
.condition("a > 1")))
.options(
- new HistoricalJobOptions()
+ new ThreatHuntingJobOptions()
.keepAlive(SecurityMonitoringRuleKeepAlive.ONE_HOUR)
.maxSignalDuration(
SecurityMonitoringRuleMaxSignalDuration.ONE_DAY)
@@ -62,10 +62,10 @@ public static void main(String[] args) {
.index("main"))));
try {
- JobCreateResponse result = apiInstance.runHistoricalJob(body);
+ JobCreateResponse result = apiInstance.runThreatHuntingJob(body);
System.out.println(result);
} catch (ApiException e) {
- System.err.println("Exception when calling SecurityMonitoringApi#runHistoricalJob");
+ System.err.println("Exception when calling SecurityMonitoringApi#runThreatHuntingJob");
System.err.println("Status code: " + e.getCode());
System.err.println("Reason: " + e.getResponseBody());
System.err.println("Response headers: " + e.getResponseHeaders());
diff --git a/src/main/java/com/datadog/api/client/ApiClient.java b/src/main/java/com/datadog/api/client/ApiClient.java
index d4731a82e7d..45f3ef73e30 100644
--- a/src/main/java/com/datadog/api/client/ApiClient.java
+++ b/src/main/java/com/datadog/api/client/ApiClient.java
@@ -696,24 +696,24 @@ public class ApiClient {
put("v2.getOpenAPI", false);
put("v2.listAPIs", false);
put("v2.updateOpenAPI", false);
- put("v2.cancelHistoricalJob", false);
+ put("v2.cancelThreatHuntingJob", false);
put("v2.convertJobResultToSignal", false);
- put("v2.deleteHistoricalJob", false);
+ put("v2.deleteThreatHuntingJob", false);
put("v2.getFinding", false);
- put("v2.getHistoricalJob", false);
put("v2.getRuleVersionHistory", false);
put("v2.getSBOM", false);
put("v2.getSecurityMonitoringHistsignal", false);
put("v2.getSecurityMonitoringHistsignalsByJobId", false);
+ put("v2.getThreatHuntingJob", false);
put("v2.listAssetsSBOMs", false);
put("v2.listFindings", false);
- put("v2.listHistoricalJobs", false);
put("v2.listScannedAssetsMetadata", false);
put("v2.listSecurityMonitoringHistsignals", false);
+ put("v2.listThreatHuntingJobs", false);
put("v2.listVulnerabilities", false);
put("v2.listVulnerableAssets", false);
put("v2.muteFindings", false);
- put("v2.runHistoricalJob", false);
+ put("v2.runThreatHuntingJob", false);
put("v2.searchSecurityMonitoringHistsignals", false);
put("v2.createDataset", false);
put("v2.deleteDataset", false);
diff --git a/src/main/java/com/datadog/api/client/v2/api/SecurityMonitoringApi.java b/src/main/java/com/datadog/api/client/v2/api/SecurityMonitoringApi.java
index 7bdb7d5e833..505dce2ee7e 100644
--- a/src/main/java/com/datadog/api/client/v2/api/SecurityMonitoringApi.java
+++ b/src/main/java/com/datadog/api/client/v2/api/SecurityMonitoringApi.java
@@ -23,16 +23,15 @@
import com.datadog.api.client.v2.model.GetResourceEvaluationFiltersResponse;
import com.datadog.api.client.v2.model.GetRuleVersionHistoryResponse;
import com.datadog.api.client.v2.model.GetSBOMResponse;
-import com.datadog.api.client.v2.model.HistoricalJobResponse;
import com.datadog.api.client.v2.model.JobCreateResponse;
import com.datadog.api.client.v2.model.ListAssetsSBOMsResponse;
import com.datadog.api.client.v2.model.ListFindingsResponse;
-import com.datadog.api.client.v2.model.ListHistoricalJobsResponse;
+import com.datadog.api.client.v2.model.ListThreatHuntingJobsResponse;
import com.datadog.api.client.v2.model.ListVulnerabilitiesResponse;
import com.datadog.api.client.v2.model.ListVulnerableAssetsResponse;
import com.datadog.api.client.v2.model.NotificationRuleResponse;
import com.datadog.api.client.v2.model.PatchNotificationRuleParameters;
-import com.datadog.api.client.v2.model.RunHistoricalJobRequest;
+import com.datadog.api.client.v2.model.RunThreatHuntingJobRequest;
import com.datadog.api.client.v2.model.SBOMComponentLicenseType;
import com.datadog.api.client.v2.model.SBOMFormat;
import com.datadog.api.client.v2.model.ScannedAssetsMetadata;
@@ -63,6 +62,7 @@
import com.datadog.api.client.v2.model.SecurityMonitoringSuppressionResponse;
import com.datadog.api.client.v2.model.SecurityMonitoringSuppressionUpdateRequest;
import com.datadog.api.client.v2.model.SecurityMonitoringSuppressionsResponse;
+import com.datadog.api.client.v2.model.ThreatHuntingJobResponse;
import com.datadog.api.client.v2.model.UpdateCustomFrameworkRequest;
import com.datadog.api.client.v2.model.UpdateCustomFrameworkResponse;
import com.datadog.api.client.v2.model.UpdateResourceEvaluationFiltersRequest;
@@ -114,27 +114,27 @@ public void setApiClient(ApiClient apiClient) {
}
/**
- * Cancel a historical job.
+ * Cancel a threat hunting job.
*
- * See {@link #cancelHistoricalJobWithHttpInfo}.
+ *
See {@link #cancelThreatHuntingJobWithHttpInfo}.
*
* @param jobId The ID of the job. (required)
* @throws ApiException if fails to make API call
*/
- public void cancelHistoricalJob(String jobId) throws ApiException {
- cancelHistoricalJobWithHttpInfo(jobId);
+ public void cancelThreatHuntingJob(String jobId) throws ApiException {
+ cancelThreatHuntingJobWithHttpInfo(jobId);
}
/**
- * Cancel a historical job.
+ * Cancel a threat hunting job.
*
- *
See {@link #cancelHistoricalJobWithHttpInfoAsync}.
+ *
See {@link #cancelThreatHuntingJobWithHttpInfoAsync}.
*
* @param jobId The ID of the job. (required)
* @return CompletableFuture
*/
- public CompletableFuture cancelHistoricalJobAsync(String jobId) {
- return cancelHistoricalJobWithHttpInfoAsync(jobId)
+ public CompletableFuture cancelThreatHuntingJobAsync(String jobId) {
+ return cancelThreatHuntingJobWithHttpInfoAsync(jobId)
.thenApply(
response -> {
return response.getData();
@@ -142,7 +142,7 @@ public CompletableFuture cancelHistoricalJobAsync(String jobId) {
}
/**
- * Cancel a historical job.
+ * Cancel a threat hunting job.
*
* @param jobId The ID of the job. (required)
* @return ApiResponse<Void>
@@ -160,9 +160,9 @@ public CompletableFuture cancelHistoricalJobAsync(String jobId) {
* | 429 | Too many requests | - |
*
*/
- public ApiResponse cancelHistoricalJobWithHttpInfo(String jobId) throws ApiException {
+ public ApiResponse cancelThreatHuntingJobWithHttpInfo(String jobId) throws ApiException {
// Check if unstable operation is enabled
- String operationId = "cancelHistoricalJob";
+ String operationId = "cancelThreatHuntingJob";
if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
} else {
@@ -173,18 +173,18 @@ public ApiResponse cancelHistoricalJobWithHttpInfo(String jobId) throws Ap
// verify the required parameter 'jobId' is set
if (jobId == null) {
throw new ApiException(
- 400, "Missing the required parameter 'jobId' when calling cancelHistoricalJob");
+ 400, "Missing the required parameter 'jobId' when calling cancelThreatHuntingJob");
}
// create path and map variables
String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}/cancel"
+ "/api/v2/siem-threat-hunting/jobs/{job_id}/cancel"
.replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
Map localVarHeaderParams = new HashMap();
Invocation.Builder builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.cancelHistoricalJob",
+ "v2.SecurityMonitoringApi.cancelThreatHuntingJob",
localVarPath,
new ArrayList(),
localVarHeaderParams,
@@ -203,16 +203,17 @@ public ApiResponse cancelHistoricalJobWithHttpInfo(String jobId) throws Ap
}
/**
- * Cancel a historical job.
+ * Cancel a threat hunting job.
*
- * See {@link #cancelHistoricalJobWithHttpInfo}.
+ *
See {@link #cancelThreatHuntingJobWithHttpInfo}.
*
* @param jobId The ID of the job. (required)
* @return CompletableFuture<ApiResponse<Void>>
*/
- public CompletableFuture> cancelHistoricalJobWithHttpInfoAsync(String jobId) {
+ public CompletableFuture> cancelThreatHuntingJobWithHttpInfoAsync(
+ String jobId) {
// Check if unstable operation is enabled
- String operationId = "cancelHistoricalJob";
+ String operationId = "cancelThreatHuntingJob";
if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
} else {
@@ -228,12 +229,12 @@ public CompletableFuture> cancelHistoricalJobWithHttpInfoAsync
CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(
new ApiException(
- 400, "Missing the required parameter 'jobId' when calling cancelHistoricalJob"));
+ 400, "Missing the required parameter 'jobId' when calling cancelThreatHuntingJob"));
return result;
}
// create path and map variables
String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}/cancel"
+ "/api/v2/siem-threat-hunting/jobs/{job_id}/cancel"
.replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
Map localVarHeaderParams = new HashMap();
@@ -242,7 +243,7 @@ public CompletableFuture> cancelHistoricalJobWithHttpInfoAsync
try {
builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.cancelHistoricalJob",
+ "v2.SecurityMonitoringApi.cancelThreatHuntingJob",
localVarPath,
new ArrayList(),
localVarHeaderParams,
@@ -474,7 +475,7 @@ public ApiResponse convertJobResultToSignalWithHttpInfo(
400, "Missing the required parameter 'body' when calling convertJobResultToSignal");
}
// create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/jobs/signal_convert";
+ String localVarPath = "/api/v2/siem-threat-hunting/jobs/signal_convert";
Map localVarHeaderParams = new HashMap();
@@ -529,7 +530,7 @@ public CompletableFuture> convertJobResultToSignalWithHttpInfo
return result;
}
// create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/jobs/signal_convert";
+ String localVarPath = "/api/v2/siem-threat-hunting/jobs/signal_convert";
Map localVarHeaderParams = new HashMap();
@@ -1703,158 +1704,6 @@ public ApiResponse deleteCustomFrameworkWithHttpI
new GenericType() {});
}
- /**
- * Delete an existing job.
- *
- * See {@link #deleteHistoricalJobWithHttpInfo}.
- *
- * @param jobId The ID of the job. (required)
- * @throws ApiException if fails to make API call
- */
- public void deleteHistoricalJob(String jobId) throws ApiException {
- deleteHistoricalJobWithHttpInfo(jobId);
- }
-
- /**
- * Delete an existing job.
- *
- *
See {@link #deleteHistoricalJobWithHttpInfoAsync}.
- *
- * @param jobId The ID of the job. (required)
- * @return CompletableFuture
- */
- public CompletableFuture deleteHistoricalJobAsync(String jobId) {
- return deleteHistoricalJobWithHttpInfoAsync(jobId)
- .thenApply(
- response -> {
- return response.getData();
- });
- }
-
- /**
- * Delete an existing job.
- *
- * @param jobId The ID of the job. (required)
- * @return ApiResponse<Void>
- * @throws ApiException if fails to make API call
- * @http.response.details
- *
- * Response details
- * | Status Code | Description | Response Headers |
- * | 204 | OK | - |
- * | 400 | Bad Request | - |
- * | 401 | Concurrent Modification | - |
- * | 403 | Not Authorized | - |
- * | 404 | Not Found | - |
- * | 409 | Conflict | - |
- * | 429 | Too many requests | - |
- *
- */
- public ApiResponse deleteHistoricalJobWithHttpInfo(String jobId) throws ApiException {
- // Check if unstable operation is enabled
- String operationId = "deleteHistoricalJob";
- if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
- apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
- } else {
- throw new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId));
- }
- Object localVarPostBody = null;
-
- // verify the required parameter 'jobId' is set
- if (jobId == null) {
- throw new ApiException(
- 400, "Missing the required parameter 'jobId' when calling deleteHistoricalJob");
- }
- // create path and map variables
- String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}"
- .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
-
- Map localVarHeaderParams = new HashMap();
-
- Invocation.Builder builder =
- apiClient.createBuilder(
- "v2.SecurityMonitoringApi.deleteHistoricalJob",
- localVarPath,
- new ArrayList(),
- localVarHeaderParams,
- new HashMap(),
- new String[] {"*/*"},
- new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
- return apiClient.invokeAPI(
- "DELETE",
- builder,
- localVarHeaderParams,
- new String[] {},
- localVarPostBody,
- new HashMap(),
- false,
- null);
- }
-
- /**
- * Delete an existing job.
- *
- * See {@link #deleteHistoricalJobWithHttpInfo}.
- *
- * @param jobId The ID of the job. (required)
- * @return CompletableFuture<ApiResponse<Void>>
- */
- public CompletableFuture> deleteHistoricalJobWithHttpInfoAsync(String jobId) {
- // Check if unstable operation is enabled
- String operationId = "deleteHistoricalJob";
- if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
- apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
- } else {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(
- new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
- return result;
- }
- Object localVarPostBody = null;
-
- // verify the required parameter 'jobId' is set
- if (jobId == null) {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(
- new ApiException(
- 400, "Missing the required parameter 'jobId' when calling deleteHistoricalJob"));
- return result;
- }
- // create path and map variables
- String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}"
- .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
-
- Map localVarHeaderParams = new HashMap();
-
- Invocation.Builder builder;
- try {
- builder =
- apiClient.createBuilder(
- "v2.SecurityMonitoringApi.deleteHistoricalJob",
- localVarPath,
- new ArrayList(),
- localVarHeaderParams,
- new HashMap(),
- new String[] {"*/*"},
- new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
- } catch (ApiException ex) {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(ex);
- return result;
- }
- return apiClient.invokeAPIAsync(
- "DELETE",
- builder,
- localVarHeaderParams,
- new String[] {},
- localVarPostBody,
- new HashMap(),
- false,
- null);
- }
-
/**
* Delete a security filter.
*
@@ -2406,27 +2255,27 @@ public CompletableFuture> deleteSignalNotificationRuleWithHttp
}
/**
- * Delete a vulnerability-based notification rule.
+ * Delete an existing job.
*
- * See {@link #deleteVulnerabilityNotificationRuleWithHttpInfo}.
+ *
See {@link #deleteThreatHuntingJobWithHttpInfo}.
*
- * @param id ID of the notification rule. (required)
+ * @param jobId The ID of the job. (required)
* @throws ApiException if fails to make API call
*/
- public void deleteVulnerabilityNotificationRule(String id) throws ApiException {
- deleteVulnerabilityNotificationRuleWithHttpInfo(id);
+ public void deleteThreatHuntingJob(String jobId) throws ApiException {
+ deleteThreatHuntingJobWithHttpInfo(jobId);
}
/**
- * Delete a vulnerability-based notification rule.
+ * Delete an existing job.
*
- *
See {@link #deleteVulnerabilityNotificationRuleWithHttpInfoAsync}.
+ *
See {@link #deleteThreatHuntingJobWithHttpInfoAsync}.
*
- * @param id ID of the notification rule. (required)
+ * @param jobId The ID of the job. (required)
* @return CompletableFuture
*/
- public CompletableFuture deleteVulnerabilityNotificationRuleAsync(String id) {
- return deleteVulnerabilityNotificationRuleWithHttpInfoAsync(id)
+ public CompletableFuture deleteThreatHuntingJobAsync(String jobId) {
+ return deleteThreatHuntingJobWithHttpInfoAsync(jobId)
.thenApply(
response -> {
return response.getData();
@@ -2434,47 +2283,55 @@ public CompletableFuture deleteVulnerabilityNotificationRuleAsync(String i
}
/**
- * Delete a notification rule for security vulnerabilities.
+ * Delete an existing job.
*
- * @param id ID of the notification rule. (required)
+ * @param jobId The ID of the job. (required)
* @return ApiResponse<Void>
* @throws ApiException if fails to make API call
* @http.response.details
*
* Response details
* | Status Code | Description | Response Headers |
- * | 204 | Rule successfully deleted. | - |
- * | 403 | Forbidden | - |
+ * | 204 | OK | - |
+ * | 400 | Bad Request | - |
+ * | 401 | Concurrent Modification | - |
+ * | 403 | Not Authorized | - |
* | 404 | Not Found | - |
+ * | 409 | Conflict | - |
* | 429 | Too many requests | - |
*
*/
- public ApiResponse deleteVulnerabilityNotificationRuleWithHttpInfo(String id)
- throws ApiException {
+ public ApiResponse deleteThreatHuntingJobWithHttpInfo(String jobId) throws ApiException {
+ // Check if unstable operation is enabled
+ String operationId = "deleteThreatHuntingJob";
+ if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
+ apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
+ } else {
+ throw new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId));
+ }
Object localVarPostBody = null;
- // verify the required parameter 'id' is set
- if (id == null) {
+ // verify the required parameter 'jobId' is set
+ if (jobId == null) {
throw new ApiException(
- 400,
- "Missing the required parameter 'id' when calling deleteVulnerabilityNotificationRule");
+ 400, "Missing the required parameter 'jobId' when calling deleteThreatHuntingJob");
}
// create path and map variables
String localVarPath =
- "/api/v2/security/vulnerabilities/notification_rules/{id}"
- .replaceAll("\\{" + "id" + "\\}", apiClient.escapeString(id.toString()));
+ "/api/v2/siem-threat-hunting/jobs/{job_id}"
+ .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
Map localVarHeaderParams = new HashMap();
Invocation.Builder builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.deleteVulnerabilityNotificationRule",
+ "v2.SecurityMonitoringApi.deleteThreatHuntingJob",
localVarPath,
new ArrayList(),
localVarHeaderParams,
new HashMap(),
new String[] {"*/*"},
- new String[] {"apiKeyAuth", "appKeyAuth"});
+ new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
return apiClient.invokeAPI(
"DELETE",
builder,
@@ -2487,31 +2344,39 @@ public ApiResponse deleteVulnerabilityNotificationRuleWithHttpInfo(String
}
/**
- * Delete a vulnerability-based notification rule.
+ * Delete an existing job.
*
- * See {@link #deleteVulnerabilityNotificationRuleWithHttpInfo}.
+ *
See {@link #deleteThreatHuntingJobWithHttpInfo}.
*
- * @param id ID of the notification rule. (required)
+ * @param jobId The ID of the job. (required)
* @return CompletableFuture<ApiResponse<Void>>
*/
- public CompletableFuture> deleteVulnerabilityNotificationRuleWithHttpInfoAsync(
- String id) {
+ public CompletableFuture> deleteThreatHuntingJobWithHttpInfoAsync(
+ String jobId) {
+ // Check if unstable operation is enabled
+ String operationId = "deleteThreatHuntingJob";
+ if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
+ apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
+ } else {
+ CompletableFuture> result = new CompletableFuture<>();
+ result.completeExceptionally(
+ new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
+ return result;
+ }
Object localVarPostBody = null;
- // verify the required parameter 'id' is set
- if (id == null) {
+ // verify the required parameter 'jobId' is set
+ if (jobId == null) {
CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(
new ApiException(
- 400,
- "Missing the required parameter 'id' when calling"
- + " deleteVulnerabilityNotificationRule"));
+ 400, "Missing the required parameter 'jobId' when calling deleteThreatHuntingJob"));
return result;
}
// create path and map variables
String localVarPath =
- "/api/v2/security/vulnerabilities/notification_rules/{id}"
- .replaceAll("\\{" + "id" + "\\}", apiClient.escapeString(id.toString()));
+ "/api/v2/siem-threat-hunting/jobs/{job_id}"
+ .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
Map localVarHeaderParams = new HashMap();
@@ -2519,13 +2384,13 @@ public CompletableFuture> deleteVulnerabilityNotificationRuleW
try {
builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.deleteVulnerabilityNotificationRule",
+ "v2.SecurityMonitoringApi.deleteThreatHuntingJob",
localVarPath,
new ArrayList(),
localVarHeaderParams,
new HashMap(),
new String[] {"*/*"},
- new String[] {"apiKeyAuth", "appKeyAuth"});
+ new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
} catch (ApiException ex) {
CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(ex);
@@ -2543,33 +2408,27 @@ public CompletableFuture> deleteVulnerabilityNotificationRuleW
}
/**
- * Modify the triage assignee of a security signal.
+ * Delete a vulnerability-based notification rule.
*
- * See {@link #editSecurityMonitoringSignalAssigneeWithHttpInfo}.
+ *
See {@link #deleteVulnerabilityNotificationRuleWithHttpInfo}.
*
- * @param signalId The ID of the signal. (required)
- * @param body Attributes describing the signal update. (required)
- * @return SecurityMonitoringSignalTriageUpdateResponse
+ * @param id ID of the notification rule. (required)
* @throws ApiException if fails to make API call
*/
- public SecurityMonitoringSignalTriageUpdateResponse editSecurityMonitoringSignalAssignee(
- String signalId, SecurityMonitoringSignalAssigneeUpdateRequest body) throws ApiException {
- return editSecurityMonitoringSignalAssigneeWithHttpInfo(signalId, body).getData();
+ public void deleteVulnerabilityNotificationRule(String id) throws ApiException {
+ deleteVulnerabilityNotificationRuleWithHttpInfo(id);
}
/**
- * Modify the triage assignee of a security signal.
+ * Delete a vulnerability-based notification rule.
*
- *
See {@link #editSecurityMonitoringSignalAssigneeWithHttpInfoAsync}.
+ *
See {@link #deleteVulnerabilityNotificationRuleWithHttpInfoAsync}.
*
- * @param signalId The ID of the signal. (required)
- * @param body Attributes describing the signal update. (required)
- * @return CompletableFuture<SecurityMonitoringSignalTriageUpdateResponse>
+ * @param id ID of the notification rule. (required)
+ * @return CompletableFuture
*/
- public CompletableFuture
- editSecurityMonitoringSignalAssigneeAsync(
- String signalId, SecurityMonitoringSignalAssigneeUpdateRequest body) {
- return editSecurityMonitoringSignalAssigneeWithHttpInfoAsync(signalId, body)
+ public CompletableFuture deleteVulnerabilityNotificationRuleAsync(String id) {
+ return deleteVulnerabilityNotificationRuleWithHttpInfoAsync(id)
.thenApply(
response -> {
return response.getData();
@@ -2577,27 +2436,170 @@ public SecurityMonitoringSignalTriageUpdateResponse editSecurityMonitoringSignal
}
/**
- * Modify the triage assignee of a security signal.
+ * Delete a notification rule for security vulnerabilities.
*
- * @param signalId The ID of the signal. (required)
- * @param body Attributes describing the signal update. (required)
- * @return ApiResponse<SecurityMonitoringSignalTriageUpdateResponse>
+ * @param id ID of the notification rule. (required)
+ * @return ApiResponse<Void>
* @throws ApiException if fails to make API call
* @http.response.details
*
* Response details
* | Status Code | Description | Response Headers |
- * | 200 | OK | - |
- * | 400 | Bad Request | - |
+ * | 204 | Rule successfully deleted. | - |
* | 403 | Forbidden | - |
* | 404 | Not Found | - |
* | 429 | Too many requests | - |
*
*/
- public ApiResponse
- editSecurityMonitoringSignalAssigneeWithHttpInfo(
- String signalId, SecurityMonitoringSignalAssigneeUpdateRequest body) throws ApiException {
- Object localVarPostBody = body;
+ public ApiResponse deleteVulnerabilityNotificationRuleWithHttpInfo(String id)
+ throws ApiException {
+ Object localVarPostBody = null;
+
+ // verify the required parameter 'id' is set
+ if (id == null) {
+ throw new ApiException(
+ 400,
+ "Missing the required parameter 'id' when calling deleteVulnerabilityNotificationRule");
+ }
+ // create path and map variables
+ String localVarPath =
+ "/api/v2/security/vulnerabilities/notification_rules/{id}"
+ .replaceAll("\\{" + "id" + "\\}", apiClient.escapeString(id.toString()));
+
+ Map localVarHeaderParams = new HashMap();
+
+ Invocation.Builder builder =
+ apiClient.createBuilder(
+ "v2.SecurityMonitoringApi.deleteVulnerabilityNotificationRule",
+ localVarPath,
+ new ArrayList(),
+ localVarHeaderParams,
+ new HashMap(),
+ new String[] {"*/*"},
+ new String[] {"apiKeyAuth", "appKeyAuth"});
+ return apiClient.invokeAPI(
+ "DELETE",
+ builder,
+ localVarHeaderParams,
+ new String[] {},
+ localVarPostBody,
+ new HashMap(),
+ false,
+ null);
+ }
+
+ /**
+ * Delete a vulnerability-based notification rule.
+ *
+ * See {@link #deleteVulnerabilityNotificationRuleWithHttpInfo}.
+ *
+ * @param id ID of the notification rule. (required)
+ * @return CompletableFuture<ApiResponse<Void>>
+ */
+ public CompletableFuture> deleteVulnerabilityNotificationRuleWithHttpInfoAsync(
+ String id) {
+ Object localVarPostBody = null;
+
+ // verify the required parameter 'id' is set
+ if (id == null) {
+ CompletableFuture> result = new CompletableFuture<>();
+ result.completeExceptionally(
+ new ApiException(
+ 400,
+ "Missing the required parameter 'id' when calling"
+ + " deleteVulnerabilityNotificationRule"));
+ return result;
+ }
+ // create path and map variables
+ String localVarPath =
+ "/api/v2/security/vulnerabilities/notification_rules/{id}"
+ .replaceAll("\\{" + "id" + "\\}", apiClient.escapeString(id.toString()));
+
+ Map localVarHeaderParams = new HashMap();
+
+ Invocation.Builder builder;
+ try {
+ builder =
+ apiClient.createBuilder(
+ "v2.SecurityMonitoringApi.deleteVulnerabilityNotificationRule",
+ localVarPath,
+ new ArrayList(),
+ localVarHeaderParams,
+ new HashMap(),
+ new String[] {"*/*"},
+ new String[] {"apiKeyAuth", "appKeyAuth"});
+ } catch (ApiException ex) {
+ CompletableFuture> result = new CompletableFuture<>();
+ result.completeExceptionally(ex);
+ return result;
+ }
+ return apiClient.invokeAPIAsync(
+ "DELETE",
+ builder,
+ localVarHeaderParams,
+ new String[] {},
+ localVarPostBody,
+ new HashMap(),
+ false,
+ null);
+ }
+
+ /**
+ * Modify the triage assignee of a security signal.
+ *
+ * See {@link #editSecurityMonitoringSignalAssigneeWithHttpInfo}.
+ *
+ * @param signalId The ID of the signal. (required)
+ * @param body Attributes describing the signal update. (required)
+ * @return SecurityMonitoringSignalTriageUpdateResponse
+ * @throws ApiException if fails to make API call
+ */
+ public SecurityMonitoringSignalTriageUpdateResponse editSecurityMonitoringSignalAssignee(
+ String signalId, SecurityMonitoringSignalAssigneeUpdateRequest body) throws ApiException {
+ return editSecurityMonitoringSignalAssigneeWithHttpInfo(signalId, body).getData();
+ }
+
+ /**
+ * Modify the triage assignee of a security signal.
+ *
+ *
See {@link #editSecurityMonitoringSignalAssigneeWithHttpInfoAsync}.
+ *
+ * @param signalId The ID of the signal. (required)
+ * @param body Attributes describing the signal update. (required)
+ * @return CompletableFuture<SecurityMonitoringSignalTriageUpdateResponse>
+ */
+ public CompletableFuture
+ editSecurityMonitoringSignalAssigneeAsync(
+ String signalId, SecurityMonitoringSignalAssigneeUpdateRequest body) {
+ return editSecurityMonitoringSignalAssigneeWithHttpInfoAsync(signalId, body)
+ .thenApply(
+ response -> {
+ return response.getData();
+ });
+ }
+
+ /**
+ * Modify the triage assignee of a security signal.
+ *
+ * @param signalId The ID of the signal. (required)
+ * @param body Attributes describing the signal update. (required)
+ * @return ApiResponse<SecurityMonitoringSignalTriageUpdateResponse>
+ * @throws ApiException if fails to make API call
+ * @http.response.details
+ *
+ * Response details
+ * | Status Code | Description | Response Headers |
+ * | 200 | OK | - |
+ * | 400 | Bad Request | - |
+ * | 403 | Forbidden | - |
+ * | 404 | Not Found | - |
+ * | 429 | Too many requests | - |
+ *
+ */
+ public ApiResponse
+ editSecurityMonitoringSignalAssigneeWithHttpInfo(
+ String signalId, SecurityMonitoringSignalAssigneeUpdateRequest body) throws ApiException {
+ Object localVarPostBody = body;
// verify the required parameter 'signalId' is set
if (signalId == null) {
@@ -3431,159 +3433,6 @@ public CompletableFuture> getFindingWithHttpInfo
new GenericType() {});
}
- /**
- * Get a job's details.
- *
- * See {@link #getHistoricalJobWithHttpInfo}.
- *
- * @param jobId The ID of the job. (required)
- * @return HistoricalJobResponse
- * @throws ApiException if fails to make API call
- */
- public HistoricalJobResponse getHistoricalJob(String jobId) throws ApiException {
- return getHistoricalJobWithHttpInfo(jobId).getData();
- }
-
- /**
- * Get a job's details.
- *
- *
See {@link #getHistoricalJobWithHttpInfoAsync}.
- *
- * @param jobId The ID of the job. (required)
- * @return CompletableFuture<HistoricalJobResponse>
- */
- public CompletableFuture getHistoricalJobAsync(String jobId) {
- return getHistoricalJobWithHttpInfoAsync(jobId)
- .thenApply(
- response -> {
- return response.getData();
- });
- }
-
- /**
- * Get a job's details.
- *
- * @param jobId The ID of the job. (required)
- * @return ApiResponse<HistoricalJobResponse>
- * @throws ApiException if fails to make API call
- * @http.response.details
- *
- * Response details
- * | Status Code | Description | Response Headers |
- * | 200 | OK | - |
- * | 400 | Bad Request | - |
- * | 403 | Not Authorized | - |
- * | 404 | Not Found | - |
- * | 429 | Too many requests | - |
- *
- */
- public ApiResponse getHistoricalJobWithHttpInfo(String jobId)
- throws ApiException {
- // Check if unstable operation is enabled
- String operationId = "getHistoricalJob";
- if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
- apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
- } else {
- throw new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId));
- }
- Object localVarPostBody = null;
-
- // verify the required parameter 'jobId' is set
- if (jobId == null) {
- throw new ApiException(
- 400, "Missing the required parameter 'jobId' when calling getHistoricalJob");
- }
- // create path and map variables
- String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}"
- .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
-
- Map localVarHeaderParams = new HashMap();
-
- Invocation.Builder builder =
- apiClient.createBuilder(
- "v2.SecurityMonitoringApi.getHistoricalJob",
- localVarPath,
- new ArrayList(),
- localVarHeaderParams,
- new HashMap(),
- new String[] {"application/json"},
- new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
- return apiClient.invokeAPI(
- "GET",
- builder,
- localVarHeaderParams,
- new String[] {},
- localVarPostBody,
- new HashMap(),
- false,
- new GenericType() {});
- }
-
- /**
- * Get a job's details.
- *
- * See {@link #getHistoricalJobWithHttpInfo}.
- *
- * @param jobId The ID of the job. (required)
- * @return CompletableFuture<ApiResponse<HistoricalJobResponse>>
- */
- public CompletableFuture> getHistoricalJobWithHttpInfoAsync(
- String jobId) {
- // Check if unstable operation is enabled
- String operationId = "getHistoricalJob";
- if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
- apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
- } else {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(
- new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
- return result;
- }
- Object localVarPostBody = null;
-
- // verify the required parameter 'jobId' is set
- if (jobId == null) {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(
- new ApiException(
- 400, "Missing the required parameter 'jobId' when calling getHistoricalJob"));
- return result;
- }
- // create path and map variables
- String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}"
- .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
-
- Map localVarHeaderParams = new HashMap();
-
- Invocation.Builder builder;
- try {
- builder =
- apiClient.createBuilder(
- "v2.SecurityMonitoringApi.getHistoricalJob",
- localVarPath,
- new ArrayList(),
- localVarHeaderParams,
- new HashMap(),
- new String[] {"application/json"},
- new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
- } catch (ApiException ex) {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(ex);
- return result;
- }
- return apiClient.invokeAPIAsync(
- "GET",
- builder,
- localVarHeaderParams,
- new String[] {},
- localVarPostBody,
- new HashMap(),
- false,
- new GenericType() {});
- }
-
/** Manage optional parameters to getResourceEvaluationFilters. */
public static class GetResourceEvaluationFiltersOptionalParameters {
private String cloudProvider;
@@ -4437,7 +4286,7 @@ public CompletableFuture> getSecurityFilterW
*
* See {@link #getSecurityMonitoringHistsignalWithHttpInfo}.
*
- * @param histsignalId The ID of the historical signal. (required)
+ * @param histsignalId The ID of the threat hunting signal. (required)
* @return SecurityMonitoringSignalResponse
* @throws ApiException if fails to make API call
*/
@@ -4451,7 +4300,7 @@ public SecurityMonitoringSignalResponse getSecurityMonitoringHistsignal(String h
*
*
See {@link #getSecurityMonitoringHistsignalWithHttpInfoAsync}.
*
- * @param histsignalId The ID of the historical signal. (required)
+ * @param histsignalId The ID of the threat hunting signal. (required)
* @return CompletableFuture<SecurityMonitoringSignalResponse>
*/
public CompletableFuture getSecurityMonitoringHistsignalAsync(
@@ -4466,7 +4315,7 @@ public CompletableFuture getSecurityMonitoring
/**
* Get a hist signal's details.
*
- * @param histsignalId The ID of the historical signal. (required)
+ * @param histsignalId The ID of the threat hunting signal. (required)
* @return ApiResponse<SecurityMonitoringSignalResponse>
* @throws ApiException if fails to make API call
* @http.response.details
@@ -4500,7 +4349,7 @@ public ApiResponse getSecurityMonitoringHistsi
}
// create path and map variables
String localVarPath =
- "/api/v2/siem-historical-detections/histsignals/{histsignal_id}"
+ "/api/v2/siem-threat-hunting/histsignals/{histsignal_id}"
.replaceAll(
"\\{" + "histsignal_id" + "\\}", apiClient.escapeString(histsignalId.toString()));
@@ -4531,7 +4380,7 @@ public ApiResponse getSecurityMonitoringHistsi
*
* See {@link #getSecurityMonitoringHistsignalWithHttpInfo}.
*
- * @param histsignalId The ID of the historical signal. (required)
+ * @param histsignalId The ID of the threat hunting signal. (required)
* @return CompletableFuture<ApiResponse<SecurityMonitoringSignalResponse>>
*/
public CompletableFuture>
@@ -4562,7 +4411,7 @@ public ApiResponse getSecurityMonitoringHistsi
}
// create path and map variables
String localVarPath =
- "/api/v2/siem-historical-detections/histsignals/{histsignal_id}"
+ "/api/v2/siem-threat-hunting/histsignals/{histsignal_id}"
.replaceAll(
"\\{" + "histsignal_id" + "\\}", apiClient.escapeString(histsignalId.toString()));
@@ -4793,7 +4642,7 @@ public SecurityMonitoringSignalsListResponse getSecurityMonitoringHistsignalsByJ
Integer pageLimit = parameters.pageLimit;
// create path and map variables
String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}/histsignals"
+ "/api/v2/siem-threat-hunting/jobs/{job_id}/histsignals"
.replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
List localVarQueryParams = new ArrayList();
@@ -4870,7 +4719,7 @@ public SecurityMonitoringSignalsListResponse getSecurityMonitoringHistsignalsByJ
Integer pageLimit = parameters.pageLimit;
// create path and map variables
String localVarPath =
- "/api/v2/siem-historical-detections/jobs/{job_id}/histsignals"
+ "/api/v2/siem-threat-hunting/jobs/{job_id}/histsignals"
.replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
List localVarQueryParams = new ArrayList();
@@ -5816,20 +5665,174 @@ public SecurityMonitoringSuppressionsResponse getSuppressionsAffectingRule(Strin
getSuppressionsAffectingRuleWithHttpInfoAsync(String ruleId) {
Object localVarPostBody = null;
- // verify the required parameter 'ruleId' is set
- if (ruleId == null) {
- CompletableFuture> result =
- new CompletableFuture<>();
+ // verify the required parameter 'ruleId' is set
+ if (ruleId == null) {
+ CompletableFuture> result =
+ new CompletableFuture<>();
+ result.completeExceptionally(
+ new ApiException(
+ 400,
+ "Missing the required parameter 'ruleId' when calling getSuppressionsAffectingRule"));
+ return result;
+ }
+ // create path and map variables
+ String localVarPath =
+ "/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}"
+ .replaceAll("\\{" + "rule_id" + "\\}", apiClient.escapeString(ruleId.toString()));
+
+ Map localVarHeaderParams = new HashMap();
+
+ Invocation.Builder builder;
+ try {
+ builder =
+ apiClient.createBuilder(
+ "v2.SecurityMonitoringApi.getSuppressionsAffectingRule",
+ localVarPath,
+ new ArrayList(),
+ localVarHeaderParams,
+ new HashMap(),
+ new String[] {"application/json"},
+ new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
+ } catch (ApiException ex) {
+ CompletableFuture> result =
+ new CompletableFuture<>();
+ result.completeExceptionally(ex);
+ return result;
+ }
+ return apiClient.invokeAPIAsync(
+ "GET",
+ builder,
+ localVarHeaderParams,
+ new String[] {},
+ localVarPostBody,
+ new HashMap(),
+ false,
+ new GenericType() {});
+ }
+
+ /**
+ * Get a job's details.
+ *
+ * See {@link #getThreatHuntingJobWithHttpInfo}.
+ *
+ * @param jobId The ID of the job. (required)
+ * @return ThreatHuntingJobResponse
+ * @throws ApiException if fails to make API call
+ */
+ public ThreatHuntingJobResponse getThreatHuntingJob(String jobId) throws ApiException {
+ return getThreatHuntingJobWithHttpInfo(jobId).getData();
+ }
+
+ /**
+ * Get a job's details.
+ *
+ *
See {@link #getThreatHuntingJobWithHttpInfoAsync}.
+ *
+ * @param jobId The ID of the job. (required)
+ * @return CompletableFuture<ThreatHuntingJobResponse>
+ */
+ public CompletableFuture getThreatHuntingJobAsync(String jobId) {
+ return getThreatHuntingJobWithHttpInfoAsync(jobId)
+ .thenApply(
+ response -> {
+ return response.getData();
+ });
+ }
+
+ /**
+ * Get a job's details.
+ *
+ * @param jobId The ID of the job. (required)
+ * @return ApiResponse<ThreatHuntingJobResponse>
+ * @throws ApiException if fails to make API call
+ * @http.response.details
+ *
+ * Response details
+ * | Status Code | Description | Response Headers |
+ * | 200 | OK | - |
+ * | 400 | Bad Request | - |
+ * | 403 | Not Authorized | - |
+ * | 404 | Not Found | - |
+ * | 429 | Too many requests | - |
+ *
+ */
+ public ApiResponse getThreatHuntingJobWithHttpInfo(String jobId)
+ throws ApiException {
+ // Check if unstable operation is enabled
+ String operationId = "getThreatHuntingJob";
+ if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
+ apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
+ } else {
+ throw new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId));
+ }
+ Object localVarPostBody = null;
+
+ // verify the required parameter 'jobId' is set
+ if (jobId == null) {
+ throw new ApiException(
+ 400, "Missing the required parameter 'jobId' when calling getThreatHuntingJob");
+ }
+ // create path and map variables
+ String localVarPath =
+ "/api/v2/siem-threat-hunting/jobs/{job_id}"
+ .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
+
+ Map localVarHeaderParams = new HashMap();
+
+ Invocation.Builder builder =
+ apiClient.createBuilder(
+ "v2.SecurityMonitoringApi.getThreatHuntingJob",
+ localVarPath,
+ new ArrayList(),
+ localVarHeaderParams,
+ new HashMap(),
+ new String[] {"application/json"},
+ new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
+ return apiClient.invokeAPI(
+ "GET",
+ builder,
+ localVarHeaderParams,
+ new String[] {},
+ localVarPostBody,
+ new HashMap(),
+ false,
+ new GenericType() {});
+ }
+
+ /**
+ * Get a job's details.
+ *
+ * See {@link #getThreatHuntingJobWithHttpInfo}.
+ *
+ * @param jobId The ID of the job. (required)
+ * @return CompletableFuture<ApiResponse<ThreatHuntingJobResponse>>
+ */
+ public CompletableFuture>
+ getThreatHuntingJobWithHttpInfoAsync(String jobId) {
+ // Check if unstable operation is enabled
+ String operationId = "getThreatHuntingJob";
+ if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
+ apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
+ } else {
+ CompletableFuture> result = new CompletableFuture<>();
+ result.completeExceptionally(
+ new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
+ return result;
+ }
+ Object localVarPostBody = null;
+
+ // verify the required parameter 'jobId' is set
+ if (jobId == null) {
+ CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(
new ApiException(
- 400,
- "Missing the required parameter 'ruleId' when calling getSuppressionsAffectingRule"));
+ 400, "Missing the required parameter 'jobId' when calling getThreatHuntingJob"));
return result;
}
// create path and map variables
String localVarPath =
- "/api/v2/security_monitoring/configuration/suppressions/rules/{rule_id}"
- .replaceAll("\\{" + "rule_id" + "\\}", apiClient.escapeString(ruleId.toString()));
+ "/api/v2/siem-threat-hunting/jobs/{job_id}"
+ .replaceAll("\\{" + "job_id" + "\\}", apiClient.escapeString(jobId.toString()));
Map localVarHeaderParams = new HashMap();
@@ -5837,7 +5840,7 @@ public SecurityMonitoringSuppressionsResponse getSuppressionsAffectingRule(Strin
try {
builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.getSuppressionsAffectingRule",
+ "v2.SecurityMonitoringApi.getThreatHuntingJob",
localVarPath,
new ArrayList(),
localVarHeaderParams,
@@ -5845,8 +5848,7 @@ public SecurityMonitoringSuppressionsResponse getSuppressionsAffectingRule(Strin
new String[] {"application/json"},
new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
} catch (ApiException ex) {
- CompletableFuture> result =
- new CompletableFuture<>();
+ CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(ex);
return result;
}
@@ -5858,7 +5860,7 @@ public SecurityMonitoringSuppressionsResponse getSuppressionsAffectingRule(Strin
localVarPostBody,
new HashMap(),
false,
- new GenericType() {});
+ new GenericType() {});
}
/**
@@ -6873,283 +6875,18 @@ public ApiResponse listFindingsWithHttpInfo(
localVarQueryParams.addAll(
apiClient.parameterToPairs("", "filter[@resource_id]", filterResourceId));
localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[discovery_timestamp]", filterDiscoveryTimestamp));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[evaluation]", filterEvaluation));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[status]", filterStatus));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("multi", "filter[vulnerability_type]", filterVulnerabilityType));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "detailed_findings", detailedFindings));
-
- Invocation.Builder builder =
- apiClient.createBuilder(
- "v2.SecurityMonitoringApi.listFindings",
- localVarPath,
- localVarQueryParams,
- localVarHeaderParams,
- new HashMap(),
- new String[] {"application/json"},
- new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
- return apiClient.invokeAPI(
- "GET",
- builder,
- localVarHeaderParams,
- new String[] {},
- localVarPostBody,
- new HashMap(),
- false,
- new GenericType() {});
- }
-
- /**
- * List findings.
- *
- * See {@link #listFindingsWithHttpInfo}.
- *
- * @param parameters Optional parameters for the request.
- * @return CompletableFuture<ApiResponse<ListFindingsResponse>>
- */
- public CompletableFuture> listFindingsWithHttpInfoAsync(
- ListFindingsOptionalParameters parameters) {
- // Check if unstable operation is enabled
- String operationId = "listFindings";
- if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
- apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
- } else {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(
- new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
- return result;
- }
- Object localVarPostBody = null;
- Long pageLimit = parameters.pageLimit;
- Long snapshotTimestamp = parameters.snapshotTimestamp;
- String pageCursor = parameters.pageCursor;
- String filterTags = parameters.filterTags;
- String filterEvaluationChangedAt = parameters.filterEvaluationChangedAt;
- Boolean filterMuted = parameters.filterMuted;
- String filterRuleId = parameters.filterRuleId;
- String filterRuleName = parameters.filterRuleName;
- String filterResourceType = parameters.filterResourceType;
- String filterResourceId = parameters.filterResourceId;
- String filterDiscoveryTimestamp = parameters.filterDiscoveryTimestamp;
- FindingEvaluation filterEvaluation = parameters.filterEvaluation;
- FindingStatus filterStatus = parameters.filterStatus;
- List filterVulnerabilityType = parameters.filterVulnerabilityType;
- Boolean detailedFindings = parameters.detailedFindings;
- // create path and map variables
- String localVarPath = "/api/v2/posture_management/findings";
-
- List localVarQueryParams = new ArrayList();
- Map localVarHeaderParams = new HashMap();
-
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[limit]", pageLimit));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "snapshot_timestamp", snapshotTimestamp));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[cursor]", pageCursor));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[tags]", filterTags));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[evaluation_changed_at]", filterEvaluationChangedAt));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[muted]", filterMuted));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[rule_id]", filterRuleId));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[rule_name]", filterRuleName));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[resource_type]", filterResourceType));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[@resource_id]", filterResourceId));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[discovery_timestamp]", filterDiscoveryTimestamp));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "filter[evaluation]", filterEvaluation));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[status]", filterStatus));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("multi", "filter[vulnerability_type]", filterVulnerabilityType));
- localVarQueryParams.addAll(
- apiClient.parameterToPairs("", "detailed_findings", detailedFindings));
-
- Invocation.Builder builder;
- try {
- builder =
- apiClient.createBuilder(
- "v2.SecurityMonitoringApi.listFindings",
- localVarPath,
- localVarQueryParams,
- localVarHeaderParams,
- new HashMap(),
- new String[] {"application/json"},
- new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
- } catch (ApiException ex) {
- CompletableFuture> result = new CompletableFuture<>();
- result.completeExceptionally(ex);
- return result;
- }
- return apiClient.invokeAPIAsync(
- "GET",
- builder,
- localVarHeaderParams,
- new String[] {},
- localVarPostBody,
- new HashMap(),
- false,
- new GenericType() {});
- }
-
- /** Manage optional parameters to listHistoricalJobs. */
- public static class ListHistoricalJobsOptionalParameters {
- private Long pageSize;
- private Long pageNumber;
- private String sort;
- private String filterQuery;
-
- /**
- * Set pageSize.
- *
- * @param pageSize Size for a given page. The maximum allowed value is 100. (optional, default
- * to 10)
- * @return ListHistoricalJobsOptionalParameters
- */
- public ListHistoricalJobsOptionalParameters pageSize(Long pageSize) {
- this.pageSize = pageSize;
- return this;
- }
-
- /**
- * Set pageNumber.
- *
- * @param pageNumber Specific page number to return. (optional, default to 0)
- * @return ListHistoricalJobsOptionalParameters
- */
- public ListHistoricalJobsOptionalParameters pageNumber(Long pageNumber) {
- this.pageNumber = pageNumber;
- return this;
- }
-
- /**
- * Set sort.
- *
- * @param sort The order of the jobs in results. (optional)
- * @return ListHistoricalJobsOptionalParameters
- */
- public ListHistoricalJobsOptionalParameters sort(String sort) {
- this.sort = sort;
- return this;
- }
-
- /**
- * Set filterQuery.
- *
- * @param filterQuery Query used to filter items from the fetched list. (optional)
- * @return ListHistoricalJobsOptionalParameters
- */
- public ListHistoricalJobsOptionalParameters filterQuery(String filterQuery) {
- this.filterQuery = filterQuery;
- return this;
- }
- }
-
- /**
- * List historical jobs.
- *
- * See {@link #listHistoricalJobsWithHttpInfo}.
- *
- * @return ListHistoricalJobsResponse
- * @throws ApiException if fails to make API call
- */
- public ListHistoricalJobsResponse listHistoricalJobs() throws ApiException {
- return listHistoricalJobsWithHttpInfo(new ListHistoricalJobsOptionalParameters()).getData();
- }
-
- /**
- * List historical jobs.
- *
- *
See {@link #listHistoricalJobsWithHttpInfoAsync}.
- *
- * @return CompletableFuture<ListHistoricalJobsResponse>
- */
- public CompletableFuture listHistoricalJobsAsync() {
- return listHistoricalJobsWithHttpInfoAsync(new ListHistoricalJobsOptionalParameters())
- .thenApply(
- response -> {
- return response.getData();
- });
- }
-
- /**
- * List historical jobs.
- *
- * See {@link #listHistoricalJobsWithHttpInfo}.
- *
- * @param parameters Optional parameters for the request.
- * @return ListHistoricalJobsResponse
- * @throws ApiException if fails to make API call
- */
- public ListHistoricalJobsResponse listHistoricalJobs(
- ListHistoricalJobsOptionalParameters parameters) throws ApiException {
- return listHistoricalJobsWithHttpInfo(parameters).getData();
- }
-
- /**
- * List historical jobs.
- *
- *
See {@link #listHistoricalJobsWithHttpInfoAsync}.
- *
- * @param parameters Optional parameters for the request.
- * @return CompletableFuture<ListHistoricalJobsResponse>
- */
- public CompletableFuture listHistoricalJobsAsync(
- ListHistoricalJobsOptionalParameters parameters) {
- return listHistoricalJobsWithHttpInfoAsync(parameters)
- .thenApply(
- response -> {
- return response.getData();
- });
- }
-
- /**
- * List historical jobs.
- *
- * @param parameters Optional parameters for the request.
- * @return ApiResponse<ListHistoricalJobsResponse>
- * @throws ApiException if fails to make API call
- * @http.response.details
- *
- * Response details
- * | Status Code | Description | Response Headers |
- * | 200 | OK | - |
- * | 400 | Bad Request | - |
- * | 403 | Not Authorized | - |
- * | 429 | Too many requests | - |
- *
- */
- public ApiResponse listHistoricalJobsWithHttpInfo(
- ListHistoricalJobsOptionalParameters parameters) throws ApiException {
- // Check if unstable operation is enabled
- String operationId = "listHistoricalJobs";
- if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
- apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
- } else {
- throw new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId));
- }
- Object localVarPostBody = null;
- Long pageSize = parameters.pageSize;
- Long pageNumber = parameters.pageNumber;
- String sort = parameters.sort;
- String filterQuery = parameters.filterQuery;
- // create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/jobs";
-
- List localVarQueryParams = new ArrayList();
- Map localVarHeaderParams = new HashMap();
-
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[size]", pageSize));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[number]", pageNumber));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "sort", sort));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[query]", filterQuery));
+ apiClient.parameterToPairs("", "filter[discovery_timestamp]", filterDiscoveryTimestamp));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "filter[evaluation]", filterEvaluation));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[status]", filterStatus));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("multi", "filter[vulnerability_type]", filterVulnerabilityType));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "detailed_findings", detailedFindings));
Invocation.Builder builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.listHistoricalJobs",
+ "v2.SecurityMonitoringApi.listFindings",
localVarPath,
localVarQueryParams,
localVarHeaderParams,
@@ -7164,50 +6901,80 @@ public ApiResponse listHistoricalJobsWithHttpInfo(
localVarPostBody,
new HashMap(),
false,
- new GenericType() {});
+ new GenericType() {});
}
/**
- * List historical jobs.
+ * List findings.
*
- * See {@link #listHistoricalJobsWithHttpInfo}.
+ *
See {@link #listFindingsWithHttpInfo}.
*
* @param parameters Optional parameters for the request.
- * @return CompletableFuture<ApiResponse<ListHistoricalJobsResponse>>
+ * @return CompletableFuture<ApiResponse<ListFindingsResponse>>
*/
- public CompletableFuture>
- listHistoricalJobsWithHttpInfoAsync(ListHistoricalJobsOptionalParameters parameters) {
+ public CompletableFuture> listFindingsWithHttpInfoAsync(
+ ListFindingsOptionalParameters parameters) {
// Check if unstable operation is enabled
- String operationId = "listHistoricalJobs";
+ String operationId = "listFindings";
if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
} else {
- CompletableFuture> result = new CompletableFuture<>();
+ CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(
new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
return result;
}
Object localVarPostBody = null;
- Long pageSize = parameters.pageSize;
- Long pageNumber = parameters.pageNumber;
- String sort = parameters.sort;
- String filterQuery = parameters.filterQuery;
+ Long pageLimit = parameters.pageLimit;
+ Long snapshotTimestamp = parameters.snapshotTimestamp;
+ String pageCursor = parameters.pageCursor;
+ String filterTags = parameters.filterTags;
+ String filterEvaluationChangedAt = parameters.filterEvaluationChangedAt;
+ Boolean filterMuted = parameters.filterMuted;
+ String filterRuleId = parameters.filterRuleId;
+ String filterRuleName = parameters.filterRuleName;
+ String filterResourceType = parameters.filterResourceType;
+ String filterResourceId = parameters.filterResourceId;
+ String filterDiscoveryTimestamp = parameters.filterDiscoveryTimestamp;
+ FindingEvaluation filterEvaluation = parameters.filterEvaluation;
+ FindingStatus filterStatus = parameters.filterStatus;
+ List filterVulnerabilityType = parameters.filterVulnerabilityType;
+ Boolean detailedFindings = parameters.detailedFindings;
// create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/jobs";
+ String localVarPath = "/api/v2/posture_management/findings";
List localVarQueryParams = new ArrayList();
Map localVarHeaderParams = new HashMap();
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[size]", pageSize));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[number]", pageNumber));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "sort", sort));
- localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[query]", filterQuery));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[limit]", pageLimit));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "snapshot_timestamp", snapshotTimestamp));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[cursor]", pageCursor));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[tags]", filterTags));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "filter[evaluation_changed_at]", filterEvaluationChangedAt));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[muted]", filterMuted));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[rule_id]", filterRuleId));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[rule_name]", filterRuleName));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "filter[resource_type]", filterResourceType));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "filter[@resource_id]", filterResourceId));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "filter[discovery_timestamp]", filterDiscoveryTimestamp));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "filter[evaluation]", filterEvaluation));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[status]", filterStatus));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("multi", "filter[vulnerability_type]", filterVulnerabilityType));
+ localVarQueryParams.addAll(
+ apiClient.parameterToPairs("", "detailed_findings", detailedFindings));
Invocation.Builder builder;
try {
builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.listHistoricalJobs",
+ "v2.SecurityMonitoringApi.listFindings",
localVarPath,
localVarQueryParams,
localVarHeaderParams,
@@ -7215,7 +6982,7 @@ public ApiResponse listHistoricalJobsWithHttpInfo(
new String[] {"application/json"},
new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
} catch (ApiException ex) {
- CompletableFuture> result = new CompletableFuture<>();
+ CompletableFuture> result = new CompletableFuture<>();
result.completeExceptionally(ex);
return result;
}
@@ -7227,7 +6994,7 @@ public ApiResponse listHistoricalJobsWithHttpInfo(
localVarPostBody,
new HashMap(),
false,
- new GenericType() {});
+ new GenericType() {});
}
/** Manage optional parameters to listScannedAssetsMetadata. */
@@ -7854,7 +7621,7 @@ public SecurityMonitoringSignalsListResponse listSecurityMonitoringHistsignals(
String pageCursor = parameters.pageCursor;
Integer pageLimit = parameters.pageLimit;
// create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/histsignals";
+ String localVarPath = "/api/v2/siem-threat-hunting/histsignals";
List localVarQueryParams = new ArrayList();
Map localVarHeaderParams = new HashMap();
@@ -7916,7 +7683,7 @@ public SecurityMonitoringSignalsListResponse listSecurityMonitoringHistsignals(
String pageCursor = parameters.pageCursor;
Integer pageLimit = parameters.pageLimit;
// create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/histsignals";
+ String localVarPath = "/api/v2/siem-threat-hunting/histsignals";
List localVarQueryParams = new ArrayList();
Map localVarHeaderParams = new HashMap();
@@ -8638,6 +8405,244 @@ public SecurityMonitoringSuppressionsResponse listSecurityMonitoringSuppressions
new GenericType() {});
}
+ /** Manage optional parameters to listThreatHuntingJobs. */
+ public static class ListThreatHuntingJobsOptionalParameters {
+ private Long pageSize;
+ private Long pageNumber;
+ private String sort;
+ private String filterQuery;
+
+ /**
+ * Set pageSize.
+ *
+ * @param pageSize Size for a given page. The maximum allowed value is 100. (optional, default
+ * to 10)
+ * @return ListThreatHuntingJobsOptionalParameters
+ */
+ public ListThreatHuntingJobsOptionalParameters pageSize(Long pageSize) {
+ this.pageSize = pageSize;
+ return this;
+ }
+
+ /**
+ * Set pageNumber.
+ *
+ * @param pageNumber Specific page number to return. (optional, default to 0)
+ * @return ListThreatHuntingJobsOptionalParameters
+ */
+ public ListThreatHuntingJobsOptionalParameters pageNumber(Long pageNumber) {
+ this.pageNumber = pageNumber;
+ return this;
+ }
+
+ /**
+ * Set sort.
+ *
+ * @param sort The order of the jobs in results. (optional)
+ * @return ListThreatHuntingJobsOptionalParameters
+ */
+ public ListThreatHuntingJobsOptionalParameters sort(String sort) {
+ this.sort = sort;
+ return this;
+ }
+
+ /**
+ * Set filterQuery.
+ *
+ * @param filterQuery Query used to filter items from the fetched list. (optional)
+ * @return ListThreatHuntingJobsOptionalParameters
+ */
+ public ListThreatHuntingJobsOptionalParameters filterQuery(String filterQuery) {
+ this.filterQuery = filterQuery;
+ return this;
+ }
+ }
+
+ /**
+ * List threat hunting jobs.
+ *
+ * See {@link #listThreatHuntingJobsWithHttpInfo}.
+ *
+ * @return ListThreatHuntingJobsResponse
+ * @throws ApiException if fails to make API call
+ */
+ public ListThreatHuntingJobsResponse listThreatHuntingJobs() throws ApiException {
+ return listThreatHuntingJobsWithHttpInfo(new ListThreatHuntingJobsOptionalParameters())
+ .getData();
+ }
+
+ /**
+ * List threat hunting jobs.
+ *
+ *
See {@link #listThreatHuntingJobsWithHttpInfoAsync}.
+ *
+ * @return CompletableFuture<ListThreatHuntingJobsResponse>
+ */
+ public CompletableFuture listThreatHuntingJobsAsync() {
+ return listThreatHuntingJobsWithHttpInfoAsync(new ListThreatHuntingJobsOptionalParameters())
+ .thenApply(
+ response -> {
+ return response.getData();
+ });
+ }
+
+ /**
+ * List threat hunting jobs.
+ *
+ * See {@link #listThreatHuntingJobsWithHttpInfo}.
+ *
+ * @param parameters Optional parameters for the request.
+ * @return ListThreatHuntingJobsResponse
+ * @throws ApiException if fails to make API call
+ */
+ public ListThreatHuntingJobsResponse listThreatHuntingJobs(
+ ListThreatHuntingJobsOptionalParameters parameters) throws ApiException {
+ return listThreatHuntingJobsWithHttpInfo(parameters).getData();
+ }
+
+ /**
+ * List threat hunting jobs.
+ *
+ *
See {@link #listThreatHuntingJobsWithHttpInfoAsync}.
+ *
+ * @param parameters Optional parameters for the request.
+ * @return CompletableFuture<ListThreatHuntingJobsResponse>
+ */
+ public CompletableFuture listThreatHuntingJobsAsync(
+ ListThreatHuntingJobsOptionalParameters parameters) {
+ return listThreatHuntingJobsWithHttpInfoAsync(parameters)
+ .thenApply(
+ response -> {
+ return response.getData();
+ });
+ }
+
+ /**
+ * List threat hunting jobs.
+ *
+ * @param parameters Optional parameters for the request.
+ * @return ApiResponse<ListThreatHuntingJobsResponse>
+ * @throws ApiException if fails to make API call
+ * @http.response.details
+ *
+ * Response details
+ * | Status Code | Description | Response Headers |
+ * | 200 | OK | - |
+ * | 400 | Bad Request | - |
+ * | 403 | Not Authorized | - |
+ * | 429 | Too many requests | - |
+ *
+ */
+ public ApiResponse listThreatHuntingJobsWithHttpInfo(
+ ListThreatHuntingJobsOptionalParameters parameters) throws ApiException {
+ // Check if unstable operation is enabled
+ String operationId = "listThreatHuntingJobs";
+ if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
+ apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
+ } else {
+ throw new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId));
+ }
+ Object localVarPostBody = null;
+ Long pageSize = parameters.pageSize;
+ Long pageNumber = parameters.pageNumber;
+ String sort = parameters.sort;
+ String filterQuery = parameters.filterQuery;
+ // create path and map variables
+ String localVarPath = "/api/v2/siem-threat-hunting/jobs";
+
+ List localVarQueryParams = new ArrayList();
+ Map localVarHeaderParams = new HashMap();
+
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[size]", pageSize));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[number]", pageNumber));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "sort", sort));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[query]", filterQuery));
+
+ Invocation.Builder builder =
+ apiClient.createBuilder(
+ "v2.SecurityMonitoringApi.listThreatHuntingJobs",
+ localVarPath,
+ localVarQueryParams,
+ localVarHeaderParams,
+ new HashMap(),
+ new String[] {"application/json"},
+ new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
+ return apiClient.invokeAPI(
+ "GET",
+ builder,
+ localVarHeaderParams,
+ new String[] {},
+ localVarPostBody,
+ new HashMap(),
+ false,
+ new GenericType() {});
+ }
+
+ /**
+ * List threat hunting jobs.
+ *
+ * See {@link #listThreatHuntingJobsWithHttpInfo}.
+ *
+ * @param parameters Optional parameters for the request.
+ * @return CompletableFuture<ApiResponse<ListThreatHuntingJobsResponse>>
+ */
+ public CompletableFuture>
+ listThreatHuntingJobsWithHttpInfoAsync(ListThreatHuntingJobsOptionalParameters parameters) {
+ // Check if unstable operation is enabled
+ String operationId = "listThreatHuntingJobs";
+ if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
+ apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
+ } else {
+ CompletableFuture> result =
+ new CompletableFuture<>();
+ result.completeExceptionally(
+ new ApiException(0, String.format("Unstable operation '%s' is disabled", operationId)));
+ return result;
+ }
+ Object localVarPostBody = null;
+ Long pageSize = parameters.pageSize;
+ Long pageNumber = parameters.pageNumber;
+ String sort = parameters.sort;
+ String filterQuery = parameters.filterQuery;
+ // create path and map variables
+ String localVarPath = "/api/v2/siem-threat-hunting/jobs";
+
+ List localVarQueryParams = new ArrayList();
+ Map localVarHeaderParams = new HashMap();
+
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[size]", pageSize));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "page[number]", pageNumber));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "sort", sort));
+ localVarQueryParams.addAll(apiClient.parameterToPairs("", "filter[query]", filterQuery));
+
+ Invocation.Builder builder;
+ try {
+ builder =
+ apiClient.createBuilder(
+ "v2.SecurityMonitoringApi.listThreatHuntingJobs",
+ localVarPath,
+ localVarQueryParams,
+ localVarHeaderParams,
+ new HashMap(),
+ new String[] {"application/json"},
+ new String[] {"apiKeyAuth", "appKeyAuth", "AuthZ"});
+ } catch (ApiException ex) {
+ CompletableFuture> result =
+ new CompletableFuture<>();
+ result.completeExceptionally(ex);
+ return result;
+ }
+ return apiClient.invokeAPIAsync(
+ "GET",
+ builder,
+ localVarHeaderParams,
+ new String[] {},
+ localVarPostBody,
+ new HashMap(),
+ false,
+ new GenericType() {});
+ }
+
/** Manage optional parameters to listVulnerabilities. */
public static class ListVulnerabilitiesOptionalParameters {
private String pageToken;
@@ -10758,28 +10763,30 @@ public ApiResponse patchVulnerabilityNotificationRuleW
}
/**
- * Run a historical job.
+ * Run a threat hunting job.
*
- * See {@link #runHistoricalJobWithHttpInfo}.
+ *
See {@link #runThreatHuntingJobWithHttpInfo}.
*
* @param body (required)
* @return JobCreateResponse
* @throws ApiException if fails to make API call
*/
- public JobCreateResponse runHistoricalJob(RunHistoricalJobRequest body) throws ApiException {
- return runHistoricalJobWithHttpInfo(body).getData();
+ public JobCreateResponse runThreatHuntingJob(RunThreatHuntingJobRequest body)
+ throws ApiException {
+ return runThreatHuntingJobWithHttpInfo(body).getData();
}
/**
- * Run a historical job.
+ * Run a threat hunting job.
*
- *
See {@link #runHistoricalJobWithHttpInfoAsync}.
+ *
See {@link #runThreatHuntingJobWithHttpInfoAsync}.
*
* @param body (required)
* @return CompletableFuture<JobCreateResponse>
*/
- public CompletableFuture runHistoricalJobAsync(RunHistoricalJobRequest body) {
- return runHistoricalJobWithHttpInfoAsync(body)
+ public CompletableFuture runThreatHuntingJobAsync(
+ RunThreatHuntingJobRequest body) {
+ return runThreatHuntingJobWithHttpInfoAsync(body)
.thenApply(
response -> {
return response.getData();
@@ -10787,7 +10794,7 @@ public CompletableFuture runHistoricalJobAsync(RunHistoricalJ
}
/**
- * Run a historical job.
+ * Run a threat hunting job.
*
* @param body (required)
* @return ApiResponse<JobCreateResponse>
@@ -10804,10 +10811,10 @@ public CompletableFuture runHistoricalJobAsync(RunHistoricalJ
* | 429 | Too many requests | - |
*
*/
- public ApiResponse runHistoricalJobWithHttpInfo(RunHistoricalJobRequest body)
- throws ApiException {
+ public ApiResponse runThreatHuntingJobWithHttpInfo(
+ RunThreatHuntingJobRequest body) throws ApiException {
// Check if unstable operation is enabled
- String operationId = "runHistoricalJob";
+ String operationId = "runThreatHuntingJob";
if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
} else {
@@ -10818,16 +10825,16 @@ public ApiResponse runHistoricalJobWithHttpInfo(RunHistorical
// verify the required parameter 'body' is set
if (body == null) {
throw new ApiException(
- 400, "Missing the required parameter 'body' when calling runHistoricalJob");
+ 400, "Missing the required parameter 'body' when calling runThreatHuntingJob");
}
// create path and map variables
- String localVarPath = "/api/v2/siem-historical-detections/jobs";
+ String localVarPath = "/api/v2/siem-threat-hunting/jobs";
Map localVarHeaderParams = new HashMap();
Invocation.Builder builder =
apiClient.createBuilder(
- "v2.SecurityMonitoringApi.runHistoricalJob",
+ "v2.SecurityMonitoringApi.runThreatHuntingJob",
localVarPath,
new ArrayList(),
localVarHeaderParams,
@@ -10846,17 +10853,17 @@ public ApiResponse runHistoricalJobWithHttpInfo(RunHistorical
}
/**
- * Run a historical job.
+ * Run a threat hunting job.
*
- * See {@link #runHistoricalJobWithHttpInfo}.
+ *
See {@link #runThreatHuntingJobWithHttpInfo}.
*
* @param body (required)
* @return CompletableFuture<ApiResponse<JobCreateResponse>>
*/
- public CompletableFuture> runHistoricalJobWithHttpInfoAsync(
- RunHistoricalJobRequest body) {
+ public CompletableFuture> runThreatHuntingJobWithHttpInfoAsync(
+ RunThreatHuntingJobRequest body) {
// Check if unstable operation is enabled
- String operationId = "runHistoricalJob";
+ String operationId = "runThreatHuntingJob";
if (apiClient.isUnstableOperationEnabled("v2." + operationId)) {
apiClient.getLogger().warning(String.format("Using unstable operation '%s'", operationId));
} else {
@@ -10872,11 +10879,11 @@ public CompletableFuture