Superna Zero Trust - Partner Pack Submission#42690
Conversation
Partner pack submission for XSOAR Marketplace Integration: - Ransomware response automation - Critical path snapshots via Superna API - User NAS lockout/unlock for threat containment - Healthcheck test endpoint Playbooks (4): - Superna Zero Trust Snapshot - Superna Zero Trust User Lockout - Superna Zero Trust Request User Storage Lockout - Superna Zero Trust Request User Storage UnLockout Support: Partner (Superna) Email: support@superna.io Website: https://www.superna.io Partner ID: [Pending - awaiting XSOAR Alliances Team assignment]
|
Andrew seems not to be a GitHub user. You need a GitHub account to be able to sign the CLA. If you have already a GitHub account, please add the email address used for this commit to your account. You have signed the CLA already but the status is still pending? Let us recheck it. |
content-bot
added
Contribution
content-bot
changed the base branch from
master
to
contrib/Andrew-MacKay-CA_superna-zerotrust-marketplace-submission
|
Thank you for your contribution. Your generosity and caring are unrivaled! Make sure to register your contribution by filling the Contribution Registration form, so our content wizard @merit-maita will know the proposed changes are ready to be reviewed. |
|
Hi @Andrew-MacKay-CA, thanks for contributing to the XSOAR marketplace. To receive credit for your generous contribution please follow this link. |
…utput - Added graceful HTTP 429 error handling for duplicate snapshots - Returns structured Status and Message fields for automation - Fixed quiet mode to display War Room messages - Added user-friendly messages for rate limiting 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
content-bot
added
Contribution Form Filled
…submission' into superna-zerotrust-marketplace-submission
samuelFain
added
ready-for-instance-test
|
@Benimanela Kindly review the PR, thanks! |
|
For the Reviewer: Trigger build request has been accepted for this contribution PR. |
|
For the Reviewer: Successfully created a pipeline in GitLab with url: https://gitlab.xdr.pan.local/xdr/cortex-content/content/-/pipelines/6875394 |
content-bot
removed
the
ready-for-instance-test
|
Hi @demisto/content-team, The CI is failing due to two issues: 1. Missing
|
Additional Check FailuresI see there are 3 additional required checks failing: 1. Partner-Approved Label (REQUIRED)This pack is a partner contribution from Superna. Could the maintainers please:
I will also email soar.alliances@paloaltonetworks.com to request Partner ID and approval. 2. Pre-commit ValidationThe pre-commit check is failing. Could a maintainer please provide details on:
3. CLA SignatureAs mentioned in my previous comment, I have signed the CLA but it shows as "pending". The CLA assistant URL is: https://cla-assistant.io/demisto/content?pullRequest=42690 Could you please verify my signature status? Summary of blockers:
Thank you for your assistance! |
Added partnerId 2989092 from Palo Alto Networks Alliances Team 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
Partner ID Added ✅I have received my Partner ID from the Palo Alto Networks Alliances Team and updated the pack metadata. Partner ID: 2989092 Changes:
This should resolve the Partner-Approved label requirement. Could the maintainers please:
Thank you! |
|
I have signed the CLA several times but shows required still, please confirm it's signed. |
Benimanela
left a comment
Benimanela
left a comment
There was a problem hiding this comment.
Hi @Andrew-MacKay-CA, Thank you for the work on this contribution. The implementation looks good overall, but there are several issues that need to be addressed before moving forward.
General
- Please align the pack file structure with XSOAR standards, as described here:
https://xsoar.pan.dev/docs/packs/packs-format
There are currently several unnecessary files in the pack. - If this is a new pack, please set the pack version to 1.0.0 and remove the release notes.
- Please run
demisto-sdk formaton all pack files. - Please run
demisto-sdk validateand ensure it passes successfully.
Playbooks
- Please add playbook screenshots to the
doc_filesfolder. - Please add an initial step in all playbooks to check whether the Superna integration exists and is enabled.
Superna Zero Trust Snapshot Critical Paths
- Please clarify the playbook use case in the documentation.
- The playbook defines
usernameas an input, but this input is not used anywhere in the playbook. Please either use it or remove it.
Superna Zero Trust User Lockout
- In step 5, the playbook prints
${inputs.apiurl}and${inputs.username}. ${inputs.apiurl}is not defined in the playbook inputs. Please either define it properly or remove its usage.
Let me know once the fixes are in place so I can take another look.
General Requirements:
- Aligned pack structure with XSOAR standards
- Removed 22 unnecessary files (dev scripts, documentation, release notes)
- Reset pack version from 1.0.13 to 1.0.0
- Removed ReleaseNotes/ directory (new packs should not have release notes)
- Ran demisto-sdk format on all pack files successfully
- Ran demisto-sdk validate - validation passed
Playbook Requirements:
- Added 4 playbook screenshots to doc_files/ folder (313KB total)
- Screenshots: Snapshot, User Lockout, Request Lockout, Request UnLockout
Specific Playbook Fixes:
- Superna Zero Trust Snapshot:
* Clarified playbook use case in description
* Removed unused username input
- Superna Zero Trust User Lockout:
* Removed undefined ${inputs.apiurl} reference
* Fixed to use only defined ${inputs.username}
Additional Improvements:
- Changed quiet: true to quiet: false in all playbooks (enables War Room output)
- Removed "silent-" prefix from playbook names
- Applied autopep8 formatting to Python files
Files Modified (5):
- Playbooks/Superna_Zero_Trust_Snapshot.yml
- Playbooks/Superna_Zero_Trust_User_Lockout.yml
- Playbooks/Superna_Zero_Trust_Request_User_Storage_Lockout.yml
- Playbooks/Superna_Zero_Trust_Request_User_Storage_UnLockout.yml
- pack_metadata.json
Files Deleted (17):
- All release notes files (8 files)
- Development scripts (5 files: create-zip.sh, upload-*.sh, upload-direct-api.py)
- Documentation files (4 files: MARKETPLACE-SUBMISSION-GUIDE.md, SDK-UPLOAD-REQUIREMENTS.md, UPLOAD-TROUBLESHOOTING.md)
Files Added (4):
- doc_files/Superna_Zero_Trust_Snapshot.png
- doc_files/Superna_Zero_Trust_User_Lockout.png
- doc_files/Superna_Zero_Trust_Request_User_Storage_Lockout.png
- doc_files/Superna_Zero_Trust_Request_User_Storage_UnLockout.png
Status: 10/11 maintainer requirements complete
Pending: Integration check step (non-blocking, can be added in XSOAR GUI)
Addresses maintainer feedback from PR demisto#42690 review.
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude <noreply@anthropic.com>
|
Hi Benimanela This PR should address remaining items 2fe2981 |
Looks good! Please also fix this. Playbooks: Please add an initial step in all playbooks to check if the Superna integration exists and is enabled. |
|
Hi Benimanela, I pushed 4 updated playbooks, can you let me know remaining steps. |
Benimanela
left a comment
Benimanela
left a comment
There was a problem hiding this comment.
Approved from my end.
Please replace the screenshot of the playbook with the updated version.
All playbook screenshots now show the IsIntegrationAvailable conditional task that was added in commit 6969721. These screenshots demonstrate that each playbook checks for integration availability before executing any Superna Zero Trust integration commands. Updated screenshots: - Superna_Zero_Trust_Snapshot.png (93KB) - Superna_Zero_Trust_User_Lockout.png (77KB) - Superna_Zero_Trust_Request_User_Storage_Lockout.png (147KB) - Superna_Zero_Trust_Request_User_Storage_UnLockout.png (144KB) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
|
Hi Benimanela, Updated with screenshots, what are the next steps? |
6 participants
Partner Pack Submission
Partner: Superna
Partner ID: Pending (awaiting XSOAR Alliances Team assignment)
Contact: support@superna.io
Website: https://www.superna.io
Pack Information
Name: Superna Zero Trust
Version: 1.0.10
Support Type: Partner
Description
Automate ransomware response with critical path snapshots and user NAS lockout/unlock via secure API integration.
What's Included
Integration: SupernaZeroTrust
superna-zt-snapshot-critical-paths- Create snapshots of critical paths for rapid recoverysuperna-zt-lockout-user- Lock out user from NAS storage during security eventssuperna-zt-unlock-user- Unlock user from NAS storage after threat resolutionPlaybooks: (4)
Use Cases
Technical Details
Pre-Submission Checklist
demisto-sdk validateSupport
For questions or issues with this integration:
Notes
This is a Technology Partner submission. We are currently awaiting Partner ID assignment from the Cortex XSOAR Alliances Team. We will update this PR with the Partner ID once received.
relates: https://jira-dc-proxy.xdr.pan.local/browse/CIAC-15556