Skip to content

UEBA packages documentation update for .ml-anomalies-shared/blogs#17933

Draft
jmcarlock wants to merge 3 commits intomainfrom
ueba-update-data-views-index-pattern
Draft

UEBA packages documentation update for .ml-anomalies-shared/blogs#17933
jmcarlock wants to merge 3 commits intomainfrom
ueba-update-data-views-index-pattern

Conversation

@jmcarlock
Copy link
Contributor

@jmcarlock jmcarlock commented Mar 20, 2026

Proposed commit message

Updates the data view backing index pattern for multiple packages

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • ~I have verified that any added dashboard complies with Kibana's Dashboard good practices ~

How to test this PR locally

  • Test with elastic-package/ITP

@github-actions
Copy link
Contributor

github-actions bot commented Mar 20, 2026
edited
Loading

✅ Vale Linting Results

No issues found on modified lines!

The Vale linter checks documentation changes against the Elastic Docs style guide.

To use Vale locally or report issues, refer to Elastic style guide for Vale.

@jmcarlock jmcarlock changed the title UEBA packages documentation update for .ml-anomalies-shared UEBA packages documentation update for .ml-anomalies-shared/blogs Mar 20, 2026
@jmcarlock
Copy link
Contributor Author

jmcarlock commented Mar 20, 2026

@jmikell821

@andrewkroh andrewkroh added Integration:ded Data Exfiltration Detection Integration:dga Domain Generation Algorithm Detection Integration:beaconing Network Beaconing Identification Integration:hta Host Traffic Anomalies Integration:lmd Lateral Movement Detection Integration:pad Privileged Access Detection documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. Integration:problemchild Living off the Land Attack Detection labels Mar 20, 2026
sodhikirti07
sodhikirti07 reviewed Mar 20, 2026
View reviewed changes
packages/ded/manifest.yml
title: "Data Exfiltration Detection"
version: 2.4.1
version: 2.4.2
source:
Copy link
Contributor

@sodhikirti07 sodhikirti07 Mar 20, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@jmcarlock You'll need to bump the versions for transforms as well.

@elasticmachine
Copy link

elasticmachine commented Mar 20, 2026

💚 Build Succeeded

History

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sodhikirti07 sodhikirti07 Awaiting requested review from sodhikirti07

@susan-shu-c susan-shu-c Awaiting requested review from susan-shu-c

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. Integration:beaconing Network Beaconing Identification Integration:ded Data Exfiltration Detection Integration:dga Domain Generation Algorithm Detection Integration:hta Host Traffic Anomalies Integration:lmd Lateral Movement Detection Integration:pad Privileged Access Detection Integration:problemchild Living off the Land Attack Detection

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jmcarlock @elasticmachine @sodhikirti07 @andrewkroh