[Cloud Secutity Posture] Add cloud connector support for asset discovery #221689
Conversation
Omolola-Akinleye
added
Team:Cloud Security
|
Pinging @elastic/kibana-cloud-security-posture (Team:Cloud Security) |
There was a problem hiding this comment.
Pull Request Overview
This PR adds support for Cloud Connector integration in Agentless Asset Discovery by introducing new feature flags, updated AWS credential forms and related constants, and corresponding test changes. Key changes include:
- Adding new hooks and constants for Cloud Connector support
- Updating AWS credentials forms and options to support Cloud Connectors
- Enhancing tests and mocks to cover the new functionality
Reviewed Changes
Copilot reviewed 17 out of 20 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/hooks/use_kibana.ts | Adds a new hook to extend Kibana context for CSP integration. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/constants.ts | Introduces new test subject constants and version info. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/utils.ts | Adds new utility functions for handling Cloud Connector AWS credential configuration. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/policy_template_selectors.tsx | Updates component props to pass along the new showCloudConnectors flag. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/policy_template_form.tsx | Modifies policy template form to include Cloud Connector support and feature flag integration. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/policy_template_form.test.tsx | Updates tests to include Cloud Connector functionality. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/mocks.ts | Adds a new mock for AWS package info reflecting Cloud Connector assets. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/constants.ts | Adds new constants for Cloud Connector template URLs and environment variables. |
| x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/aws_credentials_form/* | Updates AWS credentials form types, hooks, options, and components to incorporate Cloud Connector support. |
| x-pack/solutions/security/plugins/security_solution/common/experimental_features.ts | Introduces a new experimental feature flag for Cloud Connectors. |
| x-pack/solutions/security/plugins/cloud_security_posture/public/components/fleet_extensions/aws_credentials_form/aws_credentials_form_agentless.tsx | Adjusts the AWS agentless credentials form for the CSPM integration using Cloud Connector details. |
Files not reviewed (3)
- x-pack/platform/plugins/private/translations/translations/fr-FR.json: Language not supported
- x-pack/platform/plugins/private/translations/translations/ja-JP.json: Language not supported
- x-pack/platform/plugins/private/translations/translations/zh-CN.json: Language not supported
Comments suppressed due to low confidence (2)
x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/constants.ts:40
- Consider correcting the spelling from 'ACCORDIAN' to 'ACCORDION' to align with standard English spelling and maintain consistency across the codebase.
export const TEST_SUBJ_AWS_CLOUD_FORMATION_ACCORDIAN = 'asset-inventory-launchAws-CloudFormation-Accordian-Instructions';
x-pack/solutions/security/plugins/security_solution/public/asset_inventory/components/fleet_extensions/aws_credentials_form/aws_credentials_form_options.tsx:153
- The i18n translation id contains a double dot ('..assumeRoleLabel'); please remove the extra dot to ensure proper translation key mapping.
label: i18n.translate('xpack.securitySolution.assetInventory.fleetIntegration..assumeRoleLabel', {
...gins/cloud_security_posture/public/components/fleet_extensions/policy_template_form.test.tsx
Show resolved
Hide resolved
| const [isValid, setIsValid] = useState(true); | ||
| const { cloud } = useKibana().services; | ||
| const { cloud, uiSettings } = useKibana().services; | ||
| const cloudConnectorsEnabled = uiSettings.get('securitySolution:enableCloudConnector') || false; |
There was a problem hiding this comment.
Same, I'd reuse the constant here
| const cloudConnectorsEnabled = uiSettings.get('securitySolution:enableCloudConnector') || false; | |
| const cloudConnectorsEnabled = uiSettings.get(SECURITY_SOLUTION_ENABLE_CLOUD_CONNECTOR_SETTING) || false; |
There was a problem hiding this comment.
Could you replace this string with a constant? Either SECURITY_SOLUTION_ENABLE_CLOUD_CONNECTOR_SETTING or ENABLE_CLOUD_CONNECTOR_SETTING would work
x-pack/solutions/security/plugins/security_solution/common/experimental_features.ts
Outdated
Show resolved
Hide resolved
...ty_solution/public/asset_inventory/components/fleet_extensions/policy_template_form.test.tsx
Show resolved
Hide resolved
elastic-vault-github-plugin-prod
bot
requested a review
from a team
as a code owner
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
6 similar comments
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
21 similar comments
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
|
Friendly reminder: Looks like this PR hasn’t been backported yet. |
8 participants
Summary
Add Cloud Connector support for Agentless Asset Discovery Integration. In this PR, we add the following: