Conversation
Codecov Report❌ Patch coverage is Additional details and impacted files@@ Coverage Diff @@
## main #446 +/- ##
==========================================
- Coverage 75.02% 69.15% -5.87%
==========================================
Files 175 220 +45
Lines 17354 30832 +13478
Branches 1900 2676 +776
==========================================
+ Hits 13019 21321 +8302
- Misses 4328 9474 +5146
- Partials 7 37 +30 ☔ View full report in Codecov by Harness. 🚀 New features to boost your workflow:
|
Merge alpha into beta
- Await Promise exports (database, status, up) required in v14+ - Remove deprecated useNewUrlParser option unsupported in MongoDB driver 4.x+
Merge adm into alpha
…ection-bundles endpoint
Responses to collection bundle import requests can now inform users of potential validation errors that occurred during importation.
…eplace collection bundles
Flag flip only; the campaign and marking-definition fixtures were already ADM-compliant.
- add required x_mitre_version to the x-mitre-collection fixture (every ATT&CK domain object requires it; the full collection schema rejected its absence) - bundled malware fixture x_mitre_platforms 'platform-1' -> 'Android'
… enabled Flag flip plus the pagination validateWithAdm option; fixtures were already ADM-compliant (work-in-progress / partial schema).
- x_mitre_collection_layers placeholders ['duis','laboris'] -> ['Host','Network'] (must be from the supported collection-layers enum) - data-sources-pagination: pin ADM via the validateWithAdm option
- replace invalid-v4 analytic STIX ids (version nibble must be 4) with valid UUIDv4 values, kept consistent across the analytic definitions and the detection strategy's x_mitre_analytic_refs - x_mitre_platforms 'windows' -> 'Windows' on the seeded analytics - detection-strategies-pagination: pin ADM via the validateWithAdm option
Enable ADM request validation in the groups CRUD, query, and input-validation specs. Pin the pagination harness to ADM validation and add enterprise-attack domains to the full-schema query fixture.
Enable ADM request validation in the identities CRUD spec. Add an external reference to the seeded identity so full-schema update validation passes.
…lidation enabled Enable ADM request validation in the marking-definitions CRUD spec. No fixture changes were required; the existing WIP marking-definition payload is ADM-compliant.
Enable ADM request validation in the matrices CRUD spec. Use enterprise-attack as the seeded matrix domain so the server-composed matrix external reference is ADM-compliant.
Enable ADM request validation in the mitigations CRUD spec. Pin the pagination harness to ADM validation; no fixture field changes were required.
Enable ADM request validation in the notes CRUD spec. No fixture changes were required; note objects do not currently have an ADM schema wired into request validation.
… enabled Enable ADM request validation in the recent-activity API spec. No request fixture changes were required; the suite seeds existing STIX bundle fixtures through the collection bundle importer.
Enable ADM request validation in the references API spec for consistency. No fixture changes were required; references are system metadata records rather than STIX object request payloads.
…bled Enable ADM request validation in the relationships CRUD and pagination specs. Pass validateWithAdm to the pagination harness. Remove the pagination helper's generated name from relationship fixtures because ADM does not allow name on relationship objects. Pin OpenAPI validation in the pagination spec so recursive runs initialize route validation consistently.
Enable ADM request validation in the reports API spec. No fixture changes were required; the WIP software and relationship setup payloads are ADM-compliant.
Enable ADM request validation in the session API spec for consistency. No fixture changes were required; session requests are not STIX object payloads.
Enable ADM request validation in the software CRUD and pagination specs. Pass validateWithAdm to the pagination harness. Replace the synthetic platform fixture with Android so ADM platform validation passes. Pin OpenAPI validation in the pagination spec so recursive runs initialize route validation consistently.
Enable ADM request validation in both stix-bundles specs. Add valid v4 fixture IDs and required ADM metadata for the new-spec bundle. Normalize the legacy bundle's placeholder ATT&CK IDs, enum values, aliases, citations, and required version/modifier fields.
…validation enabled Enable ADM request validation in both system-configuration specs. Use a valid ATT&CK tactic external reference in the organization-identity fixture.
Enable ADM request validation in the tactics CRUD and tactics-techniques specs. Use valid ATT&CK tactic and technique external IDs, tactic shortnames, technique phase names, and subtechnique flags in the fixtures. Remove the unsupported marking-definition domain field from the bundle fixture.
Enable ADM request validation in the teams specs for consistency. No fixture changes were required; teams use non-STIX payloads.
…bled Enable ADM request validation in the user-accounts specs for consistency. No fixture changes were required; user-accounts use non-STIX payloads.
…nabled Enable ADM request validation in the attack-objects API spec and pin ADM validation in pagination. Normalize attack-object import fixtures to use valid ATT&CK IDs, required technique data sources, subtechnique flags, full-schema metadata, and valid software platforms. Remove unsupported marking-definition domains from the import bundles.
…dation enabled Enable ADM request validation in the collection-bundles basic and streaming specs. Normalize reusable bundle fixtures with valid ATT&CK external references, domains, platforms, data source formats, collection metadata, and group alias ordering. Update import error-count assertions for the intentionally malformed missing-spec-version fixture now that ADM records that validation error.
…dation enabled Enable ADM request validation in the collection-indexes spec for consistency. No fixture changes were required; collection indexes use non-STIX payloads.
…dm-validation-logging Enable ADM validation across regression tests + fix validation logging
|
🎉 This PR is included in version 4.17.1 🎉 The release is available on:
Your semantic-release bot 📦🚀 |
|
🎉 This PR is included in version 4.17.2 🎉 The release is available on:
Your semantic-release bot 📦🚀 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
5 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
No description provided.