Fix consistency issues in security monitoring signal triage routes (#3773)

api-clients-generation-pipeline[bot] · ci.datadog-api-spec · web-flow · commit 7ff4b2912e36 · 2026-03-25T12:55:38.000Z
Co-authored-by: ci.datadog-api-spec &lt;packages@datadoghq.com&gt;
diff --git a/.generator/schemas/v2/openapi.yaml b/.generator/schemas/v2/openapi.yaml
@@ -57909,6 +57909,7 @@ components:
         - none
         - false_positive
         - testing_or_maintenance
+        - remediated
         - investigated_case_opened
         - true_positive_benign
         - true_positive_malicious
@@ -57918,6 +57919,7 @@ components:
         - NONE
         - FALSE_POSITIVE
         - TESTING_OR_MAINTENANCE
+        - REMEDIATED
         - INVESTIGATED_CASE_OPENED
         - TRUE_POSITIVE_BENIGN
         - TRUE_POSITIVE_MALICIOUS
@@ -102447,6 +102449,8 @@ paths:
               schema:
                 $ref: "#/components/schemas/SecurityMonitoringSignalResponse"
           description: OK
+        "403":
+          $ref: "#/components/responses/NotAuthorizedResponse"
         "404":
           $ref: "#/components/responses/NotFoundResponse"
         "429":
@@ -102484,25 +102488,17 @@ paths:
                 $ref: "#/components/schemas/SecurityMonitoringSignalTriageUpdateResponse"
           description: OK
         "400":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Bad Request
+          $ref: "#/components/responses/BadRequestResponse"
         "403":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Forbidden
+          $ref: "#/components/responses/NotAuthorizedResponse"
         "404":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Not Found
+          $ref: "#/components/responses/NotFoundResponse"
         "429":
           $ref: "#/components/responses/TooManyRequestsResponse"
+      security:
+        - apiKeyAuth: []
+          appKeyAuth: []
+        - AuthZ: []
       summary: Modify the triage assignee of a security signal
       tags: ["Security Monitoring"]
       x-codegen-request-body-name: body
@@ -102532,25 +102528,17 @@ paths:
                 $ref: "#/components/schemas/SecurityMonitoringSignalTriageUpdateResponse"
           description: OK
         "400":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Bad Request
+          $ref: "#/components/responses/BadRequestResponse"
         "403":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Forbidden
+          $ref: "#/components/responses/NotAuthorizedResponse"
         "404":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Not Found
+          $ref: "#/components/responses/NotFoundResponse"
         "429":
           $ref: "#/components/responses/TooManyRequestsResponse"
+      security:
+        - apiKeyAuth: []
+          appKeyAuth: []
+        - AuthZ: []
       summary: Change the related incidents of a security signal
       tags: ["Security Monitoring"]
       x-codegen-request-body-name: body
@@ -102580,25 +102568,17 @@ paths:
                 $ref: "#/components/schemas/SecurityMonitoringSignalTriageUpdateResponse"
           description: OK
         "400":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Bad Request
+          $ref: "#/components/responses/BadRequestResponse"
         "403":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Forbidden
+          $ref: "#/components/responses/NotAuthorizedResponse"
         "404":
-          content:
-            application/json:
-              schema:
-                $ref: "#/components/schemas/APIErrorResponse"
-          description: Not Found
+          $ref: "#/components/responses/NotFoundResponse"
         "429":
           $ref: "#/components/responses/TooManyRequestsResponse"
+      security:
+        - apiKeyAuth: []
+          appKeyAuth: []
+        - AuthZ: []
       summary: Change the triage state of a security signal
       tags: ["Security Monitoring"]
       x-codegen-request-body-name: body
diff --git a/packages/datadog-api-client-v2/apis/SecurityMonitoringApi.ts b/packages/datadog-api-client-v2/apis/SecurityMonitoringApi.ts
@@ -1303,6 +1303,7 @@ export class SecurityMonitoringApiRequestFactory extends BaseAPIRequestFactory {
     applySecurityAuthentication(_config, requestContext, [
       "apiKeyAuth",
       "appKeyAuth",
+      "AuthZ",
     ]);
 
     return requestContext;
@@ -1363,6 +1364,7 @@ export class SecurityMonitoringApiRequestFactory extends BaseAPIRequestFactory {
     applySecurityAuthentication(_config, requestContext, [
       "apiKeyAuth",
       "appKeyAuth",
+      "AuthZ",
     ]);
 
     return requestContext;
@@ -1418,6 +1420,7 @@ export class SecurityMonitoringApiRequestFactory extends BaseAPIRequestFactory {
     applySecurityAuthentication(_config, requestContext, [
       "apiKeyAuth",
       "appKeyAuth",
+      "AuthZ",
     ]);
 
     return requestContext;
@@ -7369,7 +7372,11 @@ export class SecurityMonitoringApiResponseProcessor {
         ) as SecurityMonitoringSignalResponse;
       return body;
     }
-    if (response.httpStatusCode === 404 || response.httpStatusCode === 429) {
+    if (
+      response.httpStatusCode === 403 ||
+      response.httpStatusCode === 404 ||
+      response.httpStatusCode === 429
+    ) {
       const bodyText = ObjectSerializer.parse(
         await response.body.text(),
         contentType
diff --git a/packages/datadog-api-client-v2/models/ObjectSerializer.ts b/packages/datadog-api-client-v2/models/ObjectSerializer.ts
@@ -5164,6 +5164,7 @@ const enumsMap: { [key: string]: any[] } = {
     "none",
     "false_positive",
     "testing_or_maintenance",
+    "remediated",
     "investigated_case_opened",
     "true_positive_benign",
     "true_positive_malicious",
diff --git a/packages/datadog-api-client-v2/models/SecurityMonitoringSignalArchiveReason.ts b/packages/datadog-api-client-v2/models/SecurityMonitoringSignalArchiveReason.ts
@@ -14,6 +14,7 @@ export type SecurityMonitoringSignalArchiveReason =
   | typeof NONE
   | typeof FALSE_POSITIVE
   | typeof TESTING_OR_MAINTENANCE
+  | typeof REMEDIATED
   | typeof INVESTIGATED_CASE_OPENED
   | typeof TRUE_POSITIVE_BENIGN
   | typeof TRUE_POSITIVE_MALICIOUS
@@ -22,6 +23,7 @@ export type SecurityMonitoringSignalArchiveReason =
 export const NONE = "none";
 export const FALSE_POSITIVE = "false_positive";
 export const TESTING_OR_MAINTENANCE = "testing_or_maintenance";
+export const REMEDIATED = "remediated";
 export const INVESTIGATED_CASE_OPENED = "investigated_case_opened";
 export const TRUE_POSITIVE_BENIGN = "true_positive_benign";
 export const TRUE_POSITIVE_MALICIOUS = "true_positive_malicious";
