Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update correlations overview page and flyout #1248

Merged
merged 19 commits into from
Jan 31, 2025
Merged

Update correlations overview page and flyout #1248

merged 19 commits into from
Jan 31, 2025

Conversation

vikhy-aws
Copy link
Contributor

@vikhy-aws vikhy-aws commented Jan 28, 2025
edited
Loading

Description

This PR adds a new table and a bar graph that displays information by aggregating data on correlation rule, adds a toggle button to toggle visualization between the existing network graph and the newly created table. Also adds a new flyout which describes more information about correlated findings.

Screenshots of pages updated

image image image

Issues Resolved

[List any issues this PR will resolve]

Check List

  • Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

AWSHurneyt
AWSHurneyt reviewed Jan 28, 2025
View reviewed changes
Copy link
Collaborator

@AWSHurneyt AWSHurneyt left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could we add unit tests (or take a fast follow-up item to add unit tests)? Here's an example test
https://github.com/opensearch-project/security-analytics-dashboards-plugin/blob/main/public/pages/Overview/utils/helper.test.ts

We should also take an action item to add cypress (integration) tests.

public/pages/Correlations/containers/CorrelationsContainer.tsx Outdated
const findingsMap = new Map<string, CorrelationFinding>();

correlations.forEach((correlation) => {
const { finding1, finding2 } = correlation;
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@riysaxen-amzn could you clarify whether there are any circumstances when a finding for a correlation could be null? For example, if a finding history index is deleted, will there be any risk in findings being null?

@vikhy-aws
Copy link
Contributor Author

vikhy-aws commented Jan 30, 2025
edited
Loading

Updating the graph to be force directed. Graph too cluttered when there are a lot of nodes.
image

@vikhy-aws
Copy link
Contributor Author

Changed the graph to be force-directed.

@vikhy-aws
Copy link
Contributor Author

Cypress tests run locally
image
image
image
image

@amsiglan amsiglan merged commit f63b2ca into opensearch-project:main Jan 31, 2025
5 of 8 checks passed
opensearch-trigger-bot bot pushed a commit that referenced this pull request Jan 31, 2025
@github-actions
Update correlations overview page and flyout (#1248)
fc53f9c 
* feat: add correlations overview page with a chart and table, and new flyout for the table

Signed-off-by: vikhy-aws <[email protected]>

* fix: remove log statements

Signed-off-by: vikhy-aws <[email protected]>

* fix: update changes to original component

Signed-off-by: vikhy-aws <[email protected]>

* feat: add resources column to the table

Signed-off-by: vikhy-aws <[email protected]>

* fix: maintain different state for graph in the flyout than the main graph

Signed-off-by: vikhy-aws <[email protected]>

* fix: display mitre tactics as a list and add tooltip for the field

Signed-off-by: vikhy-aws <[email protected]>

* fix: update as per comments on PR

Signed-off-by: vikhy-aws <[email protected]>

* fix: update as per comments on PR

Signed-off-by: vikhy-aws <[email protected]>

* fix: move utility function into helpers

Signed-off-by: vikhy-aws <[email protected]>

* fix: make table as default view, add spinner, and alert name in flyout

Signed-off-by: vikhy-aws <[email protected]>

* fix: add a different state variable to track updates to table

Signed-off-by: vikhy-aws <[email protected]>

* fix: add a different state variable to track updates to table

* fix: fix a bug that loading spinner is on when there is no data

Signed-off-by: vikhy-aws <[email protected]>

* fix: fix a bug that loading spinner is on when there is no data

Signed-off-by: vikhy-aws <[email protected]>

* fix: change graph configurations to make it force-directed

Signed-off-by: vikhy-aws <[email protected]>

* fix: change graph configurations to make it force-directed

Signed-off-by: vikhy-aws <[email protected]>

* fix: increase correlations graph panel height

Signed-off-by: vikhy-aws <[email protected]>

* seperate out table-view into a different file

Signed-off-by: vikhy-aws <[email protected]>

* update according to comments on PR

Signed-off-by: vikhy-aws <[email protected]>

---------

Signed-off-by: vikhy-aws <[email protected]>
(cherry picked from commit f63b2ca)
Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
@opensearch-trigger-bot opensearch-trigger-bot bot mentioned this pull request Jan 31, 2025
Open
opensearch-trigger-bot bot pushed a commit that referenced this pull request Jan 31, 2025
@github-actions
Update correlations overview page and flyout (#1248)
c4fa4a0 
* feat: add correlations overview page with a chart and table, and new flyout for the table

Signed-off-by: vikhy-aws <[email protected]>

* fix: remove log statements

Signed-off-by: vikhy-aws <[email protected]>

* fix: update changes to original component

Signed-off-by: vikhy-aws <[email protected]>

* feat: add resources column to the table

Signed-off-by: vikhy-aws <[email protected]>

* fix: maintain different state for graph in the flyout than the main graph

Signed-off-by: vikhy-aws <[email protected]>

* fix: display mitre tactics as a list and add tooltip for the field

Signed-off-by: vikhy-aws <[email protected]>

* fix: update as per comments on PR

Signed-off-by: vikhy-aws <[email protected]>

* fix: update as per comments on PR

Signed-off-by: vikhy-aws <[email protected]>

* fix: move utility function into helpers

Signed-off-by: vikhy-aws <[email protected]>

* fix: make table as default view, add spinner, and alert name in flyout

Signed-off-by: vikhy-aws <[email protected]>

* fix: add a different state variable to track updates to table

Signed-off-by: vikhy-aws <[email protected]>

* fix: add a different state variable to track updates to table

* fix: fix a bug that loading spinner is on when there is no data

Signed-off-by: vikhy-aws <[email protected]>

* fix: fix a bug that loading spinner is on when there is no data

Signed-off-by: vikhy-aws <[email protected]>

* fix: change graph configurations to make it force-directed

Signed-off-by: vikhy-aws <[email protected]>

* fix: change graph configurations to make it force-directed

Signed-off-by: vikhy-aws <[email protected]>

* fix: increase correlations graph panel height

Signed-off-by: vikhy-aws <[email protected]>

* seperate out table-view into a different file

Signed-off-by: vikhy-aws <[email protected]>

* update according to comments on PR

Signed-off-by: vikhy-aws <[email protected]>

---------

Signed-off-by: vikhy-aws <[email protected]>
(cherry picked from commit f63b2ca)
Signed-off-by: github-actions[bot] <github-actions[bot]@users.noreply.github.com>
@opensearch-trigger-bot opensearch-trigger-bot bot mentioned this pull request Jan 31, 2025
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@AWSHurneyt AWSHurneyt AWSHurneyt approved these changes

@amsiglan amsiglan amsiglan approved these changes

@getsaurabh02 getsaurabh02 Awaiting requested review from getsaurabh02 getsaurabh02 is a code owner

@lezzago lezzago Awaiting requested review from lezzago lezzago is a code owner

@praveensameneni praveensameneni Awaiting requested review from praveensameneni praveensameneni is a code owner

@sbcd90 sbcd90 Awaiting requested review from sbcd90 sbcd90 is a code owner

@eirsep eirsep Awaiting requested review from eirsep eirsep is a code owner

@riysaxen-amzn riysaxen-amzn Awaiting requested review from riysaxen-amzn riysaxen-amzn is a code owner

Assignees
No one assigned
Labels
backport 2.x backport 2.19
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@vikhy-aws @AWSHurneyt @amsiglan