From bfbe7f9cb1c38fe15a7a0a1646f64bce0afe1515 Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Wed, 21 May 2025 12:55:12 -0400 Subject: [PATCH 1/8] Adding agentless deployment to the sublime security integration --- .../sublime_security/_dev/build/docs/README.md | 5 +++++ packages/sublime_security/changelog.yml | 5 +++++ packages/sublime_security/docs/README.md | 5 +++++ packages/sublime_security/manifest.yml | 14 +++++++++++--- 4 files changed, 26 insertions(+), 3 deletions(-) diff --git a/packages/sublime_security/_dev/build/docs/README.md b/packages/sublime_security/_dev/build/docs/README.md index 2c32a95cf56..4ac315f6a39 100644 --- a/packages/sublime_security/_dev/build/docs/README.md +++ b/packages/sublime_security/_dev/build/docs/README.md @@ -22,6 +22,11 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). +## Agentless Enabled Integration +Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). + +Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. + ### Installing and managing an Elastic Agent: There are several options for installing and managing Elastic Agent: diff --git a/packages/sublime_security/changelog.yml b/packages/sublime_security/changelog.yml index d05bdabc4f9..2b9b24b3181 100644 --- a/packages/sublime_security/changelog.yml +++ b/packages/sublime_security/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.9.0" + changes: + - description: Add agentless deployment. + type: enhancement + link: https://github.com/elastic/integrations/pull/1 - version: "1.8.2" changes: - description: Fix default request trace enabled behavior. diff --git a/packages/sublime_security/docs/README.md b/packages/sublime_security/docs/README.md index 7c1a7487030..8a2380e5f10 100644 --- a/packages/sublime_security/docs/README.md +++ b/packages/sublime_security/docs/README.md @@ -22,6 +22,11 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). +## Agentless Enabled Integration +Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). + +Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. + ### Installing and managing an Elastic Agent: There are several options for installing and managing Elastic Agent: diff --git a/packages/sublime_security/manifest.yml b/packages/sublime_security/manifest.yml index d6a27af70fa..d8751050613 100644 --- a/packages/sublime_security/manifest.yml +++ b/packages/sublime_security/manifest.yml @@ -1,7 +1,7 @@ -format_version: 3.2.1 +format_version: 3.2.3 name: sublime_security title: Sublime Security -version: "1.8.2" +version: "1.9.0" description: Collect logs from Sublime Security with Elastic Agent. type: integration categories: @@ -9,7 +9,7 @@ categories: - email_security conditions: kibana: - version: "^8.16.5 || ^9.0.0" + version: "^8.18.0 || ^9.0.0" elastic: subscription: basic screenshots: @@ -39,6 +39,14 @@ policy_templates: - name: sublime_security title: Sublime Security logs description: Collect Sublime Security logs. + deployment_modes: + default: + enabled: true + agentless: + enabled: true + organization: security + division: engineering + team: security-service-integrations inputs: - type: cel title: Collect Sublime Security logs via API From d864db71a29744a767687146e67716b0fd6810b6 Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Wed, 21 May 2025 13:20:28 -0400 Subject: [PATCH 2/8] added PR to change log --- packages/sublime_security/_dev/build/docs/README.md | 1 + packages/sublime_security/changelog.yml | 2 +- 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/packages/sublime_security/_dev/build/docs/README.md b/packages/sublime_security/_dev/build/docs/README.md index 4ac315f6a39..bc9dc19e66b 100644 --- a/packages/sublime_security/_dev/build/docs/README.md +++ b/packages/sublime_security/_dev/build/docs/README.md @@ -23,6 +23,7 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). ## Agentless Enabled Integration + Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. diff --git a/packages/sublime_security/changelog.yml b/packages/sublime_security/changelog.yml index 2b9b24b3181..20603cf1f38 100644 --- a/packages/sublime_security/changelog.yml +++ b/packages/sublime_security/changelog.yml @@ -3,7 +3,7 @@ changes: - description: Add agentless deployment. type: enhancement - link: https://github.com/elastic/integrations/pull/1 + link: https://github.com/elastic/integrations/pull/13963 - version: "1.8.2" changes: - description: Fix default request trace enabled behavior. From ed04a426ac716859ac07be431bd14875e5166b6f Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Wed, 21 May 2025 13:28:33 -0400 Subject: [PATCH 3/8] Update readme.md --- packages/sublime_security/docs/README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/packages/sublime_security/docs/README.md b/packages/sublime_security/docs/README.md index 8a2380e5f10..b78eff10451 100644 --- a/packages/sublime_security/docs/README.md +++ b/packages/sublime_security/docs/README.md @@ -23,6 +23,7 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). ## Agentless Enabled Integration + Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. From fb1abea6870b1104a7530d9babd66a44f4a441b8 Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Thu, 22 May 2025 09:31:34 -0400 Subject: [PATCH 4/8] Update packages/sublime_security/_dev/build/docs/README.md Co-authored-by: Dan Kortschak --- packages/sublime_security/_dev/build/docs/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/sublime_security/_dev/build/docs/README.md b/packages/sublime_security/_dev/build/docs/README.md index bc9dc19e66b..1378a83dce6 100644 --- a/packages/sublime_security/_dev/build/docs/README.md +++ b/packages/sublime_security/_dev/build/docs/README.md @@ -22,7 +22,7 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). -## Agentless Enabled Integration +## Agentless enabled integration Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). From 414bbc9c787b4e75a9b6da675db6286ef1b86f43 Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Thu, 22 May 2025 09:43:22 -0400 Subject: [PATCH 5/8] Update Readme.md to match build --- packages/sublime_security/docs/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/sublime_security/docs/README.md b/packages/sublime_security/docs/README.md index b78eff10451..2e182515b8c 100644 --- a/packages/sublime_security/docs/README.md +++ b/packages/sublime_security/docs/README.md @@ -22,7 +22,7 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). -## Agentless Enabled Integration +## Agentless enabled integration Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). From 174dadf6c89be27dec150fb5b9f9748b10ea90db Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Thu, 22 May 2025 10:09:06 -0400 Subject: [PATCH 6/8] Update packages/sublime_security/_dev/build/docs/README.md Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> --- packages/sublime_security/_dev/build/docs/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/sublime_security/_dev/build/docs/README.md b/packages/sublime_security/_dev/build/docs/README.md index 1378a83dce6..3363ac59609 100644 --- a/packages/sublime_security/_dev/build/docs/README.md +++ b/packages/sublime_security/_dev/build/docs/README.md @@ -26,7 +26,7 @@ Elastic Agent must be installed. For more details and installation instructions, Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). -Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. +Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. ### Installing and managing an Elastic Agent: From 3d896b0c02d7dca08f4690c35ff1df1721356a21 Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Thu, 22 May 2025 10:09:19 -0400 Subject: [PATCH 7/8] Update packages/sublime_security/_dev/build/docs/README.md Co-authored-by: Arianna Laudazzi <46651782+alaudazzi@users.noreply.github.com> --- packages/sublime_security/_dev/build/docs/README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/packages/sublime_security/_dev/build/docs/README.md b/packages/sublime_security/_dev/build/docs/README.md index 3363ac59609..3933ae959e8 100644 --- a/packages/sublime_security/_dev/build/docs/README.md +++ b/packages/sublime_security/_dev/build/docs/README.md @@ -22,7 +22,7 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). -## Agentless enabled integration +## Agentless-enabled integration Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). From 3dba5b3ecfd2af733fd76a900522f61fe86a6910 Mon Sep 17 00:00:00 2001 From: Quan Nguyen Date: Thu, 22 May 2025 10:10:11 -0400 Subject: [PATCH 8/8] update readme.md to match build --- packages/sublime_security/docs/README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/packages/sublime_security/docs/README.md b/packages/sublime_security/docs/README.md index 2e182515b8c..7af2ef6a02a 100644 --- a/packages/sublime_security/docs/README.md +++ b/packages/sublime_security/docs/README.md @@ -22,11 +22,11 @@ The Sublime Security integration collects three types of logs: Elastic Agent must be installed. For more details and installation instructions, please refer to the [Elastic Agent Installation Guide](https://www.elastic.co/guide/en/fleet/current/elastic-agent-installation.html). -## Agentless enabled integration +## Agentless-enabled integration Agentless integrations allow you to collect data without having to manage Elastic Agent in your cloud. They make manual agent deployment unnecessary, so you can focus on your data instead of the agent that collects it. For more information, refer to [Agentless integrations](https://www.elastic.co/guide/en/serverless/current/security-agentless-integrations.html) and the [Agentless integrations FAQ](https://www.elastic.co/guide/en/serverless/current/agentless-integration-troubleshooting.html). -Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. +Agentless deployments are only supported in Elastic Serverless and Elastic Cloud environments. This functionality is in beta and is subject to change. Beta features are not subject to the support SLA of official GA features. ### Installing and managing an Elastic Agent: