Merge pull request #12756 from Security-Onion-Solutions/2.4/detections-defaults

Use list not string
2025-12-06 17:22:49 +01:00 · 2024-04-04 17:00:38 -04:00
parent f72cbd5f23 ca807bd6bd
commit 8e38c3763e
1 changed files with 1 additions and 1 deletions
--- a/salt/soc/merged.map.jinja
+++ b/salt/soc/merged.map.jinja
@@ -32,7 +32,7 @@
 {# do not automatically enable Sigma rules if install is Eval or Import #}
 {% if grains['role'] in ['so-eval', 'so-import'] %}
-  {%   do SOCMERGED.config.server.modules.elastalertengine.update({'autoEnabledSigmaRules': ""}) %}
+  {%   do SOCMERGED.config.server.modules.elastalertengine.update({'autoEnabledSigmaRules': []}) %}
 {% endif %}
 {# remove these modules if detections is disabled #}