Improved
- We added tooltips to investigation names so that truncated investigation names fully display when you hover over them.
- We improved clarity by replacing the Timeline Event type name "Associated Alerts" with "Associated Investigations" in Investigation Details.
- We improved pages and modals across the product to have clearer loading status icons.
- We improved the experience when you create an event source with a filter. You can now filter for event sources by how they collect data.
- We updated the error banner and help documentation in the Create Connection modal to be more visible.
- We updated the help documentation link in the Add Event Source peek panel to be clearer.
- Log Search now leverages existing role-based access controls. Only authorized users can perform certain tasks, such as creating saved queries, adding to dashboard cards, or creating detection rules.
- We added a new dropdown to easily access Log Management settings from the Log Search page.
- We increased the maximum number of characters for a variable to from 1,024 to 3,072 to accommodate larger lists for searching and detection rules.
Fixed
- We fixed an issue where status messages would overflow a text box in the event source management page.
- We fixed an issue where columns on the Cloud Service Details table weren't sorting correctly.
- We fixed an issue where the Onboarding Progress page wasn't accurately displaying configured event sources.
- We fixed an issue where the actions dropdown in investigation details was not fully displaying all of the possible actions.