Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Entity Analytics] Move risk scoring painless to static files... again (with sorting fix after test failure) #183844

Merged
merged 29 commits into from
May 20, 2024
Merged

[Entity Analytics] Move risk scoring painless to static files... again (with sorting fix after test failure) #183844

merged 29 commits into from
May 20, 2024

Conversation

hop-dev
Copy link
Contributor

@hop-dev hop-dev commented May 20, 2024

Summary

This code was originally approved and merged in #182038

It was then reverted in #183759 after a test failure.

The previous code had introduced flakiness, occasionally the inputs would be supplied to risk scoring in the wrong order causing the score to decrease. Re-adding the sorting in the reduce script has fixed this.

Here is the only new code: a8cbb1c

Flaky test run 🟢

oatkiller and others added 29 commits April 29, 2024 17:00
@oatkiller
Try making risk engine painless scripts static. also remove category …
df28ab8 
…based weighting

the category based weighting, like all weighting, isn't used and we probably won't re-implement it in the next version of risk scoring

this commit probably doesn't work. i can't get integration tests running locally

I put the painless scripts in a directory and I load them from the file system at runtime.

We should figure out how to bundle the scripts possibly. I'm not sure that it matters a lot, but I would like any static analysis processes to be able to work with this code as usual. e.g. i'd like to get a static-time error if a file is missing vs needing to run the risk engine task to find out a file is missing
@oatkiller
Merge branch 'main' into risk-score-painless-refactor
62b2ba6
@hop-dev
move to async loading
b1b6f0b
@hop-dev
update test description
a37811e
@kibanamachine
Merge branch 'main' into risk-score-painless-refactor
4d6bae6
@hop-dev
remove risk weights file and tests
b1b2d6f
@hop-dev
Merge branch 'risk-score-painless-refactor' of https://github.com/ela…
7f5a753 
…stic/kibana into risk-score-painless-refactor
@oatkiller
Merge branch 'main' into risk-score-painless-refactor
b34b5a0
@hop-dev
remove commented out code
691bda5
@hop-dev
fix risk scoring
9ff6505
@hop-dev
minimise painless
66f317c
@hop-dev
Merge branch 'risk-score-painless-refactor' of https://github.com/ela…
cd67a37 
…stic/kibana into risk-score-painless-refactor
@hop-dev
re-add sorting
c99a6c3
@hop-dev
condense painless further
5690955
@hop-dev
make score a double
c4ef442
@hop-dev
remove category score test
18b9171
@hop-dev
remove category weight types
69f6b1c
@hop-dev
Merge branch 'main' into risk-score-painless-refactor
bfc7be6
@hop-dev
update jest snapshot
9d2a3be
@hop-dev
remove category weight tests
8065dff
@hop-dev
do not use category weights in preview tests
6398ac0
@hop-dev
Merge branch 'main' into risk-score-painless-refactor
a00eb04
@kibanamachine
[CI] Auto-commit changed files from 'node scripts/eslint --no-cache -…
c8ef19f 
…-fix'
@hop-dev
remove sort and add comment explaining why
0f15a20
@hop-dev
Merge branch 'main' into risk-score-painless-refactor
26f6e25
@hop-dev
remove category weights again
471c1c8
@hop-dev
comment out even more painless
4bd54e4
@hop-dev
Merge branch 'main' into risk-score-painless-refactor
500f8d2
@hop-dev
re-add sorting to reduce painless
a8cbb1c
@hop-dev hop-dev self-assigned this May 20, 2024
@hop-dev hop-dev requested a review from a team as a code owner May 20, 2024 15:41
@hop-dev hop-dev requested a review from machadoum May 20, 2024 15:41
@hop-dev hop-dev added release_note:skip Skip the PR/issue when compiling release notes Team:Entity Analytics Security Entity Analytics Team labels May 20, 2024
@elasticmachine
Copy link
Contributor

Pinging @elastic/security-entity-analytics (Team:Entity Analytics)

@hop-dev hop-dev changed the title [Entity Analytics] Risk score painless refactor [Entity Analytics] Move risk painless to static files... again (with sorting fix after test failure) May 20, 2024
@hop-dev hop-dev changed the title [Entity Analytics] Move risk painless to static files... again (with sorting fix after test failure) [Entity Analytics] Move risk scoring painless to static files... again (with sorting fix after test failure) May 20, 2024
@hop-dev hop-dev enabled auto-merge (squash) May 20, 2024 15:45
jaredburgettelastic
jaredburgettelastic approved these changes May 20, 2024
View reviewed changes
Copy link
Contributor

@jaredburgettelastic jaredburgettelastic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thank you for getting to the bottom of the issue and running the Flaky Test Runner

@kibana-ci
Copy link
Collaborator

💛 Build succeeded, but was flaky

Failed CI Steps

Metrics [docs]

Async chunks

Total size of all lazy-loaded chunks that will be downloaded as the user navigates the app

id before after diff
securitySolution 15.1MB 15.1MB -188.0B
Unknown metric groups

ESLint disabled line counts

id before after diff
securitySolution 521 522 +1

Total ESLint disabled count

id before after diff
securitySolution 603 604 +1

To update your PR or re-run it, just comment with:
@elasticmachine merge upstream

cc @hop-dev

@hop-dev hop-dev merged commit 1830300 into elastic:main May 20, 2024
42 checks passed
@kibanamachine kibanamachine added v8.15.0 backport:skip This commit does not require backporting labels May 20, 2024
@hop-dev hop-dev deleted the risk-score-painless-refactor branch May 21, 2024 06:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jaredburgettelastic jaredburgettelastic jaredburgettelastic approved these changes

@machadoum machadoum Awaiting requested review from machadoum machadoum is a code owner automatically assigned from elastic/security-entity-analytics

Assignees

@hop-dev hop-dev

Labels
backport:skip This commit does not require backporting release_note:skip Skip the PR/issue when compiling release notes Team:Entity Analytics Security Entity Analytics Team v8.15.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
6 participants
@hop-dev @elasticmachine @kibana-ci @jaredburgettelastic @kibanamachine @oatkiller