ClientParams

Removed investigation prompt from module settings and moved to client settings, added enabledInSoc.
2025-12-06 09:12:45 +01:00 · 2025-08-26 16:06:14 -06:00
parent fc2d450de0
commit 120e61e45c
1 changed files with 3 additions and 1 deletions
--- a/salt/soc/defaults.yaml
+++ b/salt/soc/defaults.yaml
@@ -1493,7 +1493,6 @@ soc:
                folder: securityonion-normalized
        assistant:
          apiUrl: https://onionai-dev.securityonion.net
-          investigationPrompt:
        salt:
          queueDir: /opt/sensoroni/queue
          timeoutMs: 45000
@@ -2544,3 +2543,6 @@ soc:
                          - ' -priv'
                  condition: all of selection_*
              level: 'high'  # info | low | medium | high | critical
+        assistant:
+          enabledInSoc: false
+          investigationPrompt: Investigate Alert ID {socid}