Skip to content

[pull] master from DataDog:master #601

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
pull merged 3 commits into from
Jun 15, 2026
Merged

[pull] master from DataDog:master #601

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
3 commits
Select commit Hold shift + click to select a range
6485dcc
Add blog post resources to Claude Compliance integration (#23958)
bgoldberg122 Jun 15, 2026
0bfcb5a
pre-sort map keys in list-item result blocks (deepSort fix) (#23952)
vinckama Jun 15, 2026
1448e8a
Migrate account_config.json to oneof-discriminated schema (#23861)
nmuesch Jun 15, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
60 changes: 30 additions & 30 deletions adyen/assets/logs/adyen_tests.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -47,30 +47,30 @@ tests:
notificationItems:
-
NotificationRequestItem:
eventCode: "AUTHORISATION"
merchantAccountCode: "ABCD123"
reason: "1234:7777:12/2012"
additionalData:
NAME1: "VALUE1"
NAME2: "VALUE2"
authCode: "1234"
cardSummary: "7777"
expiryDate: "12/2012"
fraudCheck-6-ShopperIpUsage: "10"
hmacSignature: "snUIAaCX6vgmaF4vr65BYPyvl4D9QX1VICKbpBXD8="
totalFraudScore: "10"
amount:
currency: "EUR"
value: 101
eventCode: "AUTHORISATION"
eventDate: "2024-09-24T14:47:01+02:00"
merchantAccountCode: "ABCD123"
merchantReference: "8313840770001"
operations:
- "CANCEL"
- "CAPTURE"
- "REFUND"
success: "true"
paymentMethod: "visa"
additionalData:
expiryDate: "12/2012"
authCode: "1234"
cardSummary: "7777"
totalFraudScore: "10"
hmacSignature: "snUIAaCX6vgmaF4vr65BYPyvl4D9QX1VICKbpBXD8="
NAME2: "VALUE2"
NAME1: "VALUE1"
fraudCheck-6-ShopperIpUsage: "10"
merchantReference: "8313840770001"
pspReference: "PB5FVSKW5N6DN65"
eventDate: "2024-09-24T14:47:01+02:00"
reason: "1234:7777:12/2012"
success: "true"
pspReference: "PB5FVSKW5N6DN65"
service: "transaction"
message: |-
Expand Down Expand Up @@ -143,19 +143,19 @@ tests:
notificationItems:
-
NotificationRequestItem:
eventCode: "PAYOUT_THIRDPARTY"
merchantAccountCode: "ABCD123"
originalReference: "pspReference of the PAYOUT_THIRDPARTY"
reason: ""
additionalData:
hmacSignature: "moFrJq/s/SzE8devOIm2EYFaEQQsRWHp8e4OdwB5Y="
amount:
currency: "EUR"
value: 0
success: "true"
additionalData:
hmacSignature: "moFrJq/s/SzE8devOIm2EYFaEQQsRWHp8e4OdwB5Y="
eventCode: "PAYOUT_THIRDPARTY"
eventDate: "2024-09-24T14:48:29+02:00"
merchantAccountCode: "ABCD123"
merchantReference: "testMerchantRf1"
originalReference: "pspReference of the PAYOUT_THIRDPARTY"
pspReference: "HVC6JNTJW3DV65"
eventDate: "2024-09-24T14:48:29+02:00"
reason: ""
success: "true"
pspReference: "HVC6JNTJW3DV65"
service: "payout"
message: |-
Expand Down Expand Up @@ -219,18 +219,18 @@ tests:
notificationItems:
-
NotificationRequestItem:
eventCode: "CHARGEBACK"
merchantAccountCode: "ABCD123"
reason: ""
additionalData:
hmacSignature: "jJgfaV99ZVYh/AIigUxaNKIMwsK2cWzA+7qqUWaeA="
amount:
currency: "EUR"
value: 0
success: "true"
additionalData:
hmacSignature: "jJgfaV99ZVYh/AIigUxaNKIMwsK2cWzA+7qqUWaeA="
eventCode: "CHARGEBACK"
eventDate: "2024-09-24T14:49:59+02:00"
merchantAccountCode: "ABCD123"
merchantReference: "testMrchantRef1"
pspReference: "HHCPTJW39ZDV65"
eventDate: "2024-09-24T14:49:59+02:00"
reason: ""
success: "true"
pspReference: "HHCPTJW39ZDV65"
service: "dispute"
message: |-
Expand Down
10 changes: 10 additions & 0 deletions anthropic_compliance_logs/manifest.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,16 @@
"media_type": "image"
}
],
"resources": [
{
"resource_type": "blog",
"url": "https://www.datadoghq.com/blog/cloud-siem-claude-compliance-api-integration/"
},
{
"resource_type": "blog",
"url": "https://claude.com/blog/compliance-api-security-partners"
}
],
"classifier_tags": [
"Category::AI/ML",
"Category::Log Collection",
Expand Down
64 changes: 32 additions & 32 deletions azure_active_directory/assets/logs/azure.activedirectory_tests.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -201,11 +201,11 @@ tests:
activity_name: "Logon"
actor:
user:
email_addr: "testtest@datadoghq.com"
name: "Test Test"
type: "User"
type_id: 1
uid: "0abb8889-005c-4307-85c2-97a5d3cd0964"
email_addr: "testtest@datadoghq.com"
category_name: "Identity & Access Management"
category_uid: 3
class_name: "Authentication"
Expand Down Expand Up @@ -244,8 +244,8 @@ tests:
type_name: "Authentication: Logon"
type_uid: 300201
user:
name: "Test Test"
email_addr: "testtest@datadoghq.com"
name: "Test Test"
type: "User"
type_id: 1
uid: "0abb8889-005c-4307-85c2-97a5d3cd0964"
Expand All @@ -256,18 +256,18 @@ tests:
appId: "23523755-3a2b-41ca-9315-f81f3f566a95"
appliedConditionalAccessPolicies:
-
result: "success"
conditionsNotSatisfied: 0
conditionsSatisfied: 3
displayName: "Require MFA"
enforcedGrantControls:
- "Mfa"
displayName: "Require MFA"
id: "ccb90f89-cdaf-4ae6-9dd1-a9ee6ea86a90"
result: "success"
authenticationDetails:
-
authenticationStepDateTime: "2020-05-13T12:35:19.6363979+00:00"
authenticationStepResultDetail: "MFA requirement satisfied by claim in the token"
authenticationStepRequirement: "MultiConditionalAccess"
authenticationStepResultDetail: "MFA requirement satisfied by claim in the token"
succeeded: false
clientAppUsed: "Browser"
conditionalAccessStatus: "success"
Expand Down Expand Up @@ -446,8 +446,8 @@ tests:
activityDateTime: "2020-04-08T07:40:53.1695436+00:00"
activityDisplayName: "Delete user"
additionalDetails:
- value: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:141.0) Gecko/20100101 Firefox/141.0"
key: "User-Agent"
- key: "User-Agent"
value: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:141.0) Gecko/20100101 Firefox/141.0"
category: "UserManagement"
correlationId: "a13bd0fa-70d0-4e60-ae23-b687377b4695"
id: "Directory_a13bd0fa-70d0-4e60-ae23-b687377b4695_VTP26_161277857"
Expand All @@ -465,10 +465,10 @@ tests:
resultReason: ""
resultType: ""
targetResources:
- modifiedProperties:
- newValue: '"False"'
displayName: "Is Hard Deleted"
id: "1606d62c-71bc-42ff-a03c-87809c6b0e68"
- id: "1606d62c-71bc-42ff-a03c-87809c6b0e68"
modifiedProperties:
- displayName: "Is Hard Deleted"
newValue: '"False"'
type: "User"
userPrincipalName: "deleted_user@datadoghq.com"
tenantGeo: "NA"
Expand Down Expand Up @@ -683,8 +683,8 @@ tests:
activityDisplayName: "Add member to role"
additionalDetails:
-
value: "9205c433-2781-42be-a046-c21ef6b5e608"
key: "AppId"
value: "9205c433-2781-42be-a046-c21ef6b5e608"
category: "RoleManagement"
correlationId: "5d3c3340-5c5e-419c-9ae9-193b1669f84e"
id: "Directory_5d3c3340-5c5e-419c-9ae9-193b1669f84e_D4P59_168172641"
Expand All @@ -704,23 +704,23 @@ tests:
targetResources:
-
displayName: "Test Service Principal"
id: "febf6383-8bed-4efb-8244-c9a456a1f172"
modifiedProperties:
-
newValue: "\"260a316b-1246-41c7-bc20-16569a1bd28d\""
displayName: "Role.ObjectID"
newValue: "\"260a316b-1246-41c7-bc20-16569a1bd28d\""
-
newValue: "\"Security Administrator\""
displayName: "Role.DisplayName"
newValue: "\"Security Administrator\""
-
newValue: "\"194ae4cb-b126-40b2-bd5b-6091b380977d\""
displayName: "Role.TemplateId"
newValue: "\"194ae4cb-b126-40b2-bd5b-6091b380977d\""
-
newValue: "\"SecurityAdmins\""
displayName: "Role.WellKnownObjectName"
newValue: "\"SecurityAdmins\""
-
newValue: "\"9205c433-2781-42be-a046-c21ef6b5e608\""
displayName: "TargetId.ServicePrincipalNames"
id: "febf6383-8bed-4efb-8244-c9a456a1f172"
newValue: "\"9205c433-2781-42be-a046-c21ef6b5e608\""
type: "ServicePrincipal"
-
id: "260a316b-1246-41c7-bc20-16569a1bd28d"
Expand Down Expand Up @@ -948,11 +948,11 @@ tests:
activityDisplayName: "Add member to group"
additionalDetails:
-
value: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
key: "User-Agent"
value: "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"
-
value: "9205c433-2781-42be-a046-c21ef6b5e608"
key: "AppId"
value: "9205c433-2781-42be-a046-c21ef6b5e608"
category: "GroupManagement"
correlationId: "67c2eef3-4b38-4017-82dd-ecc064c38151"
id: "Directory_67c2eef3-4b38-4017-82dd-ecc064c38151_M4V7T_12366951"
Expand All @@ -972,17 +972,17 @@ tests:
targetResources:
-
displayName: "Test Application"
id: "febf6383-8bed-4efb-8244-c9a456a1f172"
modifiedProperties:
-
newValue: "\"3b3bf2cd-049a-4f35-9e63-dc2a0a830807\""
displayName: "Group.ObjectID"
newValue: "\"3b3bf2cd-049a-4f35-9e63-dc2a0a830807\""
-
newValue: "\"Security-Research-Admins\""
displayName: "Group.DisplayName"
newValue: "\"Security-Research-Admins\""
-
newValue: "\"9205c433-2781-42be-a046-c21ef6b5e608\""
displayName: "TargetId.ServicePrincipalNames"
id: "febf6383-8bed-4efb-8244-c9a456a1f172"
newValue: "\"9205c433-2781-42be-a046-c21ef6b5e608\""
type: "ServicePrincipal"
-
groupType: "unknownFutureValue"
Expand Down Expand Up @@ -1182,14 +1182,14 @@ tests:
activityDateTime: "2020-04-08T07:40:53.1695436+00:00"
activityDisplayName: "Validate user authentication"
additionalDetails:
- value: "00000000-0000-0000-0000-000000000000"
key: "targetTenant"
- value: "None"
key: "targetEntityType"
- value: "UPN"
key: "actorIdentityType"
- value: "f32c392f-d8a3-4846-b89d-8c4cb9a404d8"
key: "RequestId"
- key: "targetTenant"
value: "00000000-0000-0000-0000-000000000000"
- key: "targetEntityType"
value: "None"
- key: "actorIdentityType"
value: "UPN"
- key: "RequestId"
value: "f32c392f-d8a3-4846-b89d-8c4cb9a404d8"
category: "Authentication"
correlationId: "f32c392f-d8a3-4846-b89d-8c4cb9a404d8"
id: "B2C_f32c392f-d8a3-4846-b89d-8c4cb9a404d8_4d3bac44-0230-4732-9e70-cc00736f0a97_134000182275995730"
Expand Down
2 changes: 1 addition & 1 deletion ...rust_privileged_remote_access/assets/logs/beyondtrust-privileged-remote-access_tests.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,7 +37,6 @@ tests:
-
sample: "Dec 28 23:45:21 pf60fc91 BG[65890] 1427:01:09:site=pf60fc91.beyondtrustcloud.com;when=1766987121;who=John Carter IT (john.carter@test.ai);who_ip=64.252.101.204;event=group_policy_added;account:disabled=0;allow_override=0;login_code:enabled=1"
result:
result:
custom:
account:disabled: 0
account_status_value: "enabled"
Expand All @@ -63,6 +62,7 @@ tests:
when: 1.766987121E12
who: "John Carter IT (john.carter@test.ai)"
message: "Dec 28 23:45:21 pf60fc91 BG[65890] 1427:01:09:site=pf60fc91.beyondtrustcloud.com;when=1766987121;who=John Carter IT (john.carter@test.ai);who_ip=64.252.101.204;event=group_policy_added;account:disabled=0;allow_override=0;login_code:enabled=1"
result:
tags:
- "source:LOGS_SOURCE"
timestamp: 1766987121000
Expand Down
Loading
Loading