Class SecurityMonitoringSuppressionUpdateAttributes

The suppression rule properties to be updated.

Hierarchy

  • SecurityMonitoringSuppressionUpdateAttributes

Constructors

Properties

additionalProperties?: {
    [key: string]: any;
}

A container for additional, undeclared properties. This is a holder for any undeclared properties as specified with the 'additionalProperties' keyword in the OAS document.

Type declaration

  • [key: string]: any
dataExclusionQuery?: string

An exclusion query on the input data of the security rules, which could be logs, Agent events, or other types of data based on the security rule. Events matching this query are ignored by any detection rules referenced in the suppression rule.

description?: string

A description for the suppression rule.

enabled?: boolean

Whether the suppression rule is enabled.

expirationDate?: number

A Unix millisecond timestamp giving an expiration date for the suppression rule. After this date, it won't suppress signals anymore. If unset, the expiration date of the suppression rule is left untouched. If set to null, the expiration date is removed.

name?: string

The name of the suppression rule.

ruleQuery?: string

The rule query of the suppression rule, with the same syntax as the search bar for detection rules.

suppressionQuery?: string

The suppression query of the suppression rule. If a signal matches this query, it is suppressed and not triggered. Same syntax as the queries to search signals in the signal explorer.

version?: number

The current version of the suppression. This is optional, but it can help prevent concurrent modifications.

Generated using TypeDoc