Breaking changes
- [Alerta] All matches will now be sent with the alert - #1068 - @dakotacody
- Renamed the
overwritesparameter tooverridesin the load_conf method of config.py - #1100 - @akusei
New features
- [Graylog GELF] Alerter added. #1050 - @malinkinsa
- [TheHive] Format
title,type, andsourcewith dynamic lookup values - #1092 - @fandigunawan - [HTTP POST2]
http_post2_payloadandhttp_post2_headersnow support multiline JSON strings for better control over jinja templates - #1104 - @akusei - [HTTP POST2] This alerter now supports the use of
jinja_root_name- #1104 - @akusei - [Rule Testing] The data file passed with
--datacan now contain a single JSON document or a list of JSON objects - #1104 - @akusei
Other changes
- [Docs] Clarify Jira Cloud authentication configuration - 94f7e8c - @jertel
- Update minimum versions for third-party dependencies in requirements.txt and setup.py - #1051 - @nsano-rururu
- [Docs] Clarify
importsupport for list of files - #1075 - @sqrooted - Add support for Kibana 8.6 for Kibana Discover - #1080 - @nsano-rururu
- Modify schema to allow string and boolean for
*_ca_certsto allow for one to specify a cert bundle for SSL certificate verification - #1082 - @Goggin - Fix UnicodeEncodeError in PagerDutyAlerter - #1091 - @nsano-rururu
- The scan_entire_timeframe setting, when used with use_count_query or use_terms_query will now scan entire timeframe on subsequent rule runs - #1097 - @rschirin
- Add new unit tests to cover changes in the HTTP POST2 alerter - #1104 - @akusei
- [Docs] Updated HTTP POST2 documentation to outline changes with payloads, headers and multiline JSON strings - #1104 - @akusei
- [HTTP POST2] Additional error checking around rendering and dumping payloads/headers to JSON - #1104 - @akusei