Skip to content

[ENG-58761]:Migrate detect API to Alerts #393

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
rakhimundhada15 merged 2 commits into from
Aug 22, 2025
Merged

[ENG-58761]:Migrate detect API to Alerts #393

rakhimundhada15 merged 2 commits into from
Aug 22, 2025

Conversation

@rakhimundhada15
Copy link
Contributor

@rakhimundhada15 rakhimundhada15 commented Aug 20, 2025

Problem Description

The Detection API endpoints are deprecated and will be decommissioned on September 30th, 2025. The Alerts api is provide Legacy concepts, so migrated to Alerts API.

Solution Description

Added support to collect detection data using the Alerts API. The existing Detection API code can be removed if it begins to fail or once it is officially(i.e. September 30th, 2025) deprecated.
To retrieve alert details, use the following APIs:

  1. Query Alert IDs
    GET /alerts/queries/alerts/v2
    Use filters such as project:epp and created_timestamp to identify relevant alert IDs.

  2. Fetch Alert Details
    POST /alerts/entities/alerts/v2
    Use the retrieved alert IDs to get detailed information about each alert.

Acceptance Criteria for Contributors

  1. Alerts API Integration
  2. Existing Detection API code should remain functional but be clearly marked as deprecated.
  3. If the Detection API begins to fail (e.g., returns errors or is unreachable), it should be safely removed or bypassed without breaking the system.
  4. Added unit tests to cover the new Alert API integration.

@al-cibot
Copy link

al-cibot commented Aug 20, 2025

CI Service Job Number 1099 Logs - SUCCESS

alps ci job-logs --organization alertlogic --repository paws-collector --job-num 1099 -g

Stages Run:

  • PR Test

@al-cibot
Copy link

al-cibot commented Aug 22, 2025

CI Service Job Number 1100 Logs - SUCCESS

alps ci job-logs --organization alertlogic --repository paws-collector --job-num 1100 -g

Stages Run:

  • PR Test

@rakhimundhada15
Copy link
Contributor Author

rakhimundhada15 commented Aug 22, 2025

build-collector-crowdstrike

@al-cibot
Copy link

al-cibot commented Aug 22, 2025

CI Service Job Number 1101 Logs - SUCCESS

alps ci job-logs --organization alertlogic --repository paws-collector --job-num 1101 -g

Stages Run:

  • build-collector-crowdstrike
  • file_packager_bb9e31

@rakhimundhada15 rakhimundhada15 merged commit 9949f7f into alertlogic:master Aug 22, 2025
2 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@OHaganA OHaganA OHaganA approved these changes

@scott-jones-AlertLogic scott-jones-AlertLogic scott-jones-AlertLogic approved these changes

@imranalisyed506 imranalisyed506 Awaiting requested review from imranalisyed506

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@rakhimundhada15 @al-cibot @OHaganA @scott-jones-AlertLogic