#+title: FY24Q2 Report #+subtitle: logs goes 4 months back #+date: 2024-01-26 #+options: H:6 ^:nil * IROH ** lead *** [0] ** data *** Mario Aquino [7] **** iroh [4] - Fix disabled threat-hunt test [[https://github.com/advthreat/iroh/pull/8814][#8814]] - Update incident_time when updating incident status [[https://github.com/advthreat/iroh/pull/8801][#8801]] - incident enrichment activity diagram [[https://github.com/advthreat/iroh/pull/8712][#8712]] - Separate Risk score & incident enrichment [[https://github.com/advthreat/iroh/pull/8751][#8751]] **** tenzin-config [3] - Increase conn-manager thread count after PROD performance monitoring [[https://github.com/advthreat/tenzin-config/pull/1042][#1042]] - Increase thread pool size for EU private intel conn mgr [[https://github.com/advthreat/tenzin-config/pull/1039][#1039]] - Increase connection mgr thread pool for NAM/EU/TEST [[https://github.com/advthreat/tenzin-config/pull/1030][#1030]] *** [0] *** Ambrose Bonnaire-Sergeant [7] **** ctia [2] - Fix 2XX response swagger/coercion, ban ~:return~ [[https://github.com/advthreat/ctia/pull/1407][#1407]] - Remove asset properties/mapping merging during bundle patch [[https://github.com/advthreat/ctia/pull/1408][#1408]] **** iroh [3] - Generate valid DI auth tokens for incident subscriptions [[https://github.com/advthreat/iroh/pull/8804][#8804]] - Fix ~(reset)~ [[https://github.com/advthreat/iroh/pull/8799][#8799]] - Subscribe to incident asset rescoring via DI [[https://github.com/advthreat/iroh/pull/8699][#8699]] **** tenzin-config [2] - Add config for DI client in iroh-engine [[https://github.com/advthreat/tenzin-config/pull/1036][#1036]] - Add device insights url to iroh-engine config [[https://github.com/advthreat/tenzin-config/pull/1014][#1014]] ** integrations *** [0] *** Kirill Chernyshov [6] **** iroh [3] - Refactor data streams service [[https://github.com/advthreat/iroh/pull/8793][#8793]] - DRY'ed out client-creds-token namespace [[https://github.com/advthreat/iroh/pull/8783][#8783]] - Kafka connect monitoring [[https://github.com/advthreat/iroh/pull/8278][#8278]] **** tenzin-config [3] - Add ES sink connector v2 to test full migration [[https://github.com/advthreat/tenzin-config/pull/1035][#1035]] - Fix broken data stream on TEST [[https://github.com/advthreat/tenzin-config/pull/1034][#1034]] - Config for DataStreams service [[https://github.com/advthreat/tenzin-config/pull/1033][#1033]] *** Shafiq [3] **** iroh [3] - Fix schema of proxy health check [[https://github.com/advthreat/iroh/pull/8827][#8827]] - Add string matching for health check [[https://github.com/advthreat/iroh/pull/8815][#8815]] - Fallback to iroh-events store when kafka send fails [[https://github.com/advthreat/iroh/pull/8786][#8786]] ** auth *** bartuka [6] **** iroh [5] - [IROH Auth] Support FMC in the ~jwks~ service [[https://github.com/advthreat/iroh/pull/8830][#8830]] - [IROH Auth] Fix DI onboarding in Universal Provisioning Flow [[https://github.com/advthreat/iroh/pull/8813][#8813]] - Revert "[IROH Auth] support for FMC token in JWKS Service" [[https://github.com/advthreat/iroh/pull/8816][#8816]] - [IROH Auth] support for FMC token in JWKS Service [[https://github.com/advthreat/iroh/pull/8808][#8808]] - [IROH Auth] Check QA ~callback_url~ to complete provisioning tests [[https://github.com/advthreat/iroh/pull/8763][#8763]] **** tenzin-config [1] - FMC base-urls to configure JWKS [[https://github.com/advthreat/tenzin-config/pull/1040][#1040]] *** Yann Esposito [5] **** iroh [4] - Fix PIAM Universal Provisioning routes [[https://github.com/advthreat/iroh/pull/8828][#8828]] - Should fix open impersonate flaky test [[https://github.com/advthreat/iroh/pull/8809][#8809]] - Keep track of impersonators [[https://github.com/advthreat/iroh/pull/8736][#8736]] - Restrict TAC routes to admins [[https://github.com/advthreat/iroh/pull/8794][#8794]] **** iroh-scripts [1] - save improvements *** Olivier Barbeau [12] **** iroh [6] - Check the list of services for a node type [[https://github.com/advthreat/iroh/pull/8800][#8800]] - Fix merge error on PR 8784 [[https://github.com/advthreat/iroh/pull/8797][#8797]] - [IROH configuration]: Move role-web-service config to default tk files [[https://github.com/advthreat/iroh/pull/8782][#8782]] - [IROH configuration]: Universal Provisioning Services config refactor [[https://github.com/advthreat/iroh/pull/8784][#8784]] - [IROH configuration]: explicit name for generated conf and meta [[https://github.com/advthreat/iroh/pull/8785][#8785]] - Clean bootstrap.cfg; remove tmp file [[https://github.com/advthreat/iroh/pull/8781][#8781]] **** tenzin-config [6] - Deep merge for vectors and sets with duplicates check [[https://github.com/advthreat/tenzin-config/pull/1032][#1032]] - Reduce configuration duplicates - config.edn part [[https://github.com/advthreat/tenzin-config/pull/1031][#1031]] - Reduce configuration duplicates - bootstrap.cfg part [[https://github.com/advthreat/tenzin-config/pull/1028][#1028]] - Move role-web-service config to IROH [[https://github.com/advthreat/tenzin-config/pull/1026][#1026]] - Move Universal Provisioning Services config to IROH [[https://github.com/advthreat/tenzin-config/pull/1027][#1027]] - Clean bootstrap cfg [[https://github.com/advthreat/tenzin-config/pull/1025][#1025]] *** (Yogsototh) [1] **** iroh-scripts [1] - save improvements ** iroh-ops *** [0] *** [0] * Other ** Other *** II [2] **** iroh [2] - Implements v2 threat hunting [[https://github.com/advthreat/iroh/pull/8833][#8833]] - This should fix issue with parent settings not used on create-patch [[https://github.com/advthreat/iroh/pull/8822][#8822]] *** [2] **** iroh [2] - Implements v2 threat hunting [[https://github.com/advthreat/iroh/pull/8833][#8833]] - This should fix issue with parent settings not used on create-patch [[https://github.com/advthreat/iroh/pull/8822][#8822]] *** Scott McLeod [1] **** iroh [1] - tk store: Add delete-search method #8213 [[https://github.com/advthreat/iroh/pull/8692][#8692]] *** Brooke Swanson [1] **** tenzin-config [1] - Playbook automation config. [[https://github.com/advthreat/tenzin-config/pull/1037][#1037]]