test regexes for detections

2026-04-24 05:31:54 +02:00 · 2024-05-06 19:03:12 -04:00
parent a67f0d93a0
commit 4ebe070cd8
3 changed files with 17 additions and 0 deletions
--- a/salt/soc/soc_soc.yaml
+++ b/salt/soc/soc_soc.yaml
@@ -135,6 +135,7 @@ soc:
            description: Duration (in milliseconds) to wait for a response from the Elasticsearch host before giving up and showing an error on the SOC UI.
            global: True
            advanced: True
+            forcedType: int
          casesEnabled:
            description: Set to true if the SOC case management module, natively integrated with Elasticsearch, should be enabled.
            global: True
@@ -179,10 +180,12 @@ soc:
            description: Duration (in milliseconds) to wait for a response from the Salt API when executing tasks known for being long running before giving up and showing an error on the SOC UI.
            global: True
            advanced: True
+            forcedType: int
          relayTimeoutMs:
            description: Duration (in milliseconds) to wait for a response from the Salt API when executing common grid management tasks before giving up and showing an error on the SOC UI.
            global: True
            advanced: True
+            forcedType: int
        strelkaengine:
          allowRegex:
            description: 'Regex used to filter imported Yara rules. Deny regex takes precedence over the Allow regex setting.'
@@ -242,17 +245,21 @@ soc:
          description: Duration (in milliseconds) to wait for a response from the SOC server API before giving up and showing an error on the SOC UI.
          global: True
          advanced: True
+          forcedType: int
        webSocketTimeoutMs:
          description: Duration (in milliseconds) to wait for a response from the SOC server websocket before giving up and reconnecting.
          global: True
          advanced: True
+          forcedType: int
        tipTimeoutMs:
          description: Duration (in milliseconds) to show the popup tips, which typically indicate a successful operation.
          global: True
+          forcedType: int
        cacheExpirationMs:
          description: Duration (in milliseconds) of cached data within the browser, including users and settings.
          global: True
          advanced: True
+          forcedType: int
        casesEnabled:
          description: Set to true to enable case management in SOC.
          global: True