Class: DatadogAPIClient::V2::SecurityMonitoringRuleOptions

Inherits:
Object
  • Object
show all
Includes:
BaseGenericModel
Defined in:
lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb

Overview

Options.

Instance Attribute Summary collapse

Method Summary

Methods included from BaseGenericModel

included

Instance Attribute Details

#additional_propertiesObject

Returns the value of attribute additional_properties.



63
64
65
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 63

def additional_properties
  @additional_properties
end

#compliance_rule_optionsObject

Options for cloud_configuration rules. Fields ‘resourceType` and `regoRule` are mandatory when managing custom `cloud_configuration` rules.



26
27
28
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 26

def compliance_rule_options
  @compliance_rule_options
end

#decrease_criticality_based_on_envObject

If true, signals in non-production environments have a lower severity than what is defined by the rule case, which can reduce signal noise. The severity is decreased by one level: ‘CRITICAL` in production becomes `HIGH` in non-production, `HIGH` becomes `MEDIUM` and so on. `INFO` remains `INFO`. The decrement is applied when the environment tag of the signal starts with `staging`, `test` or `dev`.



31
32
33
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 31

def decrease_criticality_based_on_env
  @decrease_criticality_based_on_env
end

#detection_methodObject

The detection method.



34
35
36
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 34

def detection_method
  @detection_method
end

#evaluation_windowObject

A time window is specified to match when at least one of the cases matches true. This is a sliding window and evaluates in real time. For third party detection method, this field is not used.



38
39
40
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 38

def evaluation_window
  @evaluation_window
end

#hardcoded_evaluator_typeObject

Hardcoded evaluator type.



41
42
43
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 41

def hardcoded_evaluator_type
  @hardcoded_evaluator_type
end

#impossible_travel_optionsObject

Options on impossible travel detection method.



44
45
46
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 44

def impossible_travel_options
  @impossible_travel_options
end

#keep_aliveObject

Once a signal is generated, the signal will remain “open” if a case is matched at least once within this keep alive window. For third party detection method, this field is not used.



48
49
50
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 48

def keep_alive
  @keep_alive
end

#max_signal_durationObject

A signal will “close” regardless of the query being matched once the time exceeds the maximum duration. This time is calculated from the first seen timestamp.



52
53
54
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 52

def max_signal_duration
  @max_signal_duration
end

#new_value_optionsObject

Options on new value detection method.



55
56
57
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 55

def new_value_options
  @new_value_options
end

#sequence_detection_optionsObject

Options on sequence detection method.



58
59
60
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 58

def sequence_detection_options
  @sequence_detection_options
end

#third_party_rule_optionsObject

Options on third party detection method.



61
62
63
 
# File 'lib/datadog_api_client/v2/models/security_monitoring_rule_options.rb', line 61

def third_party_rule_options
  @third_party_rule_options
end