Skip to content

Commit

Permalink
Added test for fix
Browse files Browse the repository at this point in the history
  • Loading branch information
@thomaspatzke
thomaspatzke committed Jan 9, 2025
1 parent d20c524 commit ea6cff5
Showing 1 changed file with 20 additions and 0 deletions.
20 changes: 20 additions & 0 deletions tests/test_processing_transformations.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -493,6 +493,26 @@ def test_field_prefix_mapping(dummy_pipeline, field_prefix_mapping_transformatio
}


def test_field_prefix_mapping_keyword_detection(
dummy_pipeline, keyword_sigma_rule, field_prefix_mapping_transformation
):
field_prefix_mapping_transformation.set_pipeline(dummy_pipeline)
field_prefix_mapping_transformation.apply(keyword_sigma_rule)
assert keyword_sigma_rule.detection.detections["test"] == SigmaDetection(
[
SigmaDetectionItem(
None,
[],
[
SigmaString("value1"),
SigmaString("value2"),
SigmaString("value3"),
],
),
]
)


def test_field_prefix_mapping_correlation_rule(
dummy_pipeline, sigma_correlation_rule, field_prefix_mapping_transformation
):
Expand Down

0 comments on commit ea6cff5

Please sign in to comment.