From d6b6b52820faf3093ffa551bc6f56b05868d78fe Mon Sep 17 00:00:00 2001
From: Men-hau <101662967+Men-hau@users.noreply.github.com>
Date: Wed, 29 Nov 2023 12:08:16 +0100
Subject: [PATCH 1/3] Update formatting.md

---
 docs/xdr/features/detect/anomaly.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/xdr/features/detect/anomaly.md b/docs/xdr/features/detect/anomaly.md
index e59c0a0aa1..5edb1ba61a 100644
--- a/docs/xdr/features/detect/anomaly.md
+++ b/docs/xdr/features/detect/anomaly.md
@@ -40,7 +40,7 @@ For a complete configuration, you need to set:
 ![!](/assets/xdr/rules/anomaly/172567318-cb8d9304-b86b-4b2e-ab21-8e43b177324b.png)
 
 !!! Note
-  `Time to raise an Anomaly alert = 30 minutes + 2*Time interval`, after the behaviour matches the detection pattern based on Aggregation mechanism
+   `Time to raise an Anomaly alert = 30 minutes + 2*Time interval`, after the behaviour matches the detection pattern based on Aggregation mechanism
 
 - type of anomalies you want to detect (high, low or both)
 

From 7ab6cf04bbf94c46ae0f3041d91b60f4a6e5b6d0 Mon Sep 17 00:00:00 2001
From: Men-hau <101662967+Men-hau@users.noreply.github.com>
Date: Wed, 29 Nov 2023 14:08:40 +0100
Subject: [PATCH 2/3] Update anomaly.md

---
 docs/xdr/features/detect/anomaly.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docs/xdr/features/detect/anomaly.md b/docs/xdr/features/detect/anomaly.md
index 5edb1ba61a..b9211b9a44 100644
--- a/docs/xdr/features/detect/anomaly.md
+++ b/docs/xdr/features/detect/anomaly.md
@@ -40,7 +40,7 @@ For a complete configuration, you need to set:
 ![!](/assets/xdr/rules/anomaly/172567318-cb8d9304-b86b-4b2e-ab21-8e43b177324b.png)
 
 !!! Note
-   `Time to raise an Anomaly alert = 30 minutes + 2*Time interval`, after the behaviour matches the detection pattern based on Aggregation mechanism
+    `Time to raise an Anomaly alert = 30 minutes + 2*Time interval`, after the behaviour matches the detection pattern based on Aggregation mechanism
 
 - type of anomalies you want to detect (high, low or both)
 

From fcc9e0daf7d5c4d583738a56e9f98793a1aa1f21 Mon Sep 17 00:00:00 2001
From: Khaoula Ettaleb <49680698+ka0ula@users.noreply.github.com>
Date: Thu, 18 Jan 2024 17:12:16 +0100
Subject: [PATCH 3/3] Update anomaly.md

---
 docs/xdr/features/detect/anomaly.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/docs/xdr/features/detect/anomaly.md b/docs/xdr/features/detect/anomaly.md
index b9211b9a44..f187262690 100644
--- a/docs/xdr/features/detect/anomaly.md
+++ b/docs/xdr/features/detect/anomaly.md
@@ -40,7 +40,8 @@ For a complete configuration, you need to set:
 ![!](/assets/xdr/rules/anomaly/172567318-cb8d9304-b86b-4b2e-ab21-8e43b177324b.png)
 
 !!! Note
-    `Time to raise an Anomaly alert = 30 minutes + 2*Time interval`, after the behaviour matches the detection pattern based on Aggregation mechanism
+    **Time to raise an anomaly alert equals 30 minutes + 2*time interval**
+    The anomaly alert is raised after it matches the detection pattern based on the selected aggregation mechanism. 
 
 - type of anomalies you want to detect (high, low or both)