Optional additionalA container for additional, undeclared properties. This is a holder for any undeclared properties as specified with the 'additionalProperties' keyword in the OAS document.
Optional casesCases for generating signals.
Optional createdWhen the rule was created, timestamp in milliseconds.
Optional creationUser ID of the user who created the rule.
Optional customCustom/Overridden message for generated signals (used in case of Default rule update).
Optional customCustom/Overridden name of the rule (used in case of Default rule update).
Optional deprecationWhen the rule will be deprecated, timestamp in milliseconds.
Optional filtersAdditional queries to filter matched events before they are processed. This field is deprecated for log detection, signal correlation, and workload security rules.
Optional hasWhether the notifications include the triggering group-by values in their title.
Optional idThe ID of the rule.
Optional isWhether the rule is included by default.
Optional isWhether the rule has been deleted.
Optional isWhether the rule is enabled.
Optional messageMessage for generated signals.
Optional nameThe name of the rule.
Optional optionsOptions.
Optional queriesQueries for selecting logs which are part of the rule.
Optional tagsTags for generated signals.
Optional typeThe rule type.
Optional updateUser ID of the user who updated the rule.
Optional versionThe version of the rule.
Generated using TypeDoc
Rule.