DataDog
diff --git a/‎.apigentools-info‎
Lines changed: 4 additions & 4 deletions b/‎.apigentools-info‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎.generator/schemas/v2/openapi.yaml‎
Lines changed: 140 additions & 0 deletions b/‎.generator/schemas/v2/openapi.yaml‎
Lines changed: 140 additions & 0 deletions
diff --git a/‎cassettes/v2/Security-Monitoring_1187227211/Test-a-rule-returns-OK-response_150297886/frozen.json‎
Lines changed: 1 addition & 0 deletions b/‎cassettes/v2/Security-Monitoring_1187227211/Test-a-rule-returns-OK-response_150297886/frozen.json‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎cassettes/v2/Security-Monitoring_1187227211/Test-a-rule-returns-OK-response_150297886/recording.har‎
Lines changed: 67 additions & 0 deletions b/‎cassettes/v2/Security-Monitoring_1187227211/Test-a-rule-returns-OK-response_150297886/recording.har‎
Lines changed: 67 additions & 0 deletions
diff --git a/‎examples/v2/security-monitoring/TestExistingSecurityMonitoringRule.ts‎
Lines changed: 38 additions & 0 deletions b/‎examples/v2/security-monitoring/TestExistingSecurityMonitoringRule.ts‎
Lines changed: 38 additions & 0 deletions
diff --git a/‎examples/v2/security-monitoring/TestSecurityMonitoringRule.ts‎
Lines changed: 68 additions & 0 deletions b/‎examples/v2/security-monitoring/TestSecurityMonitoringRule.ts‎
Lines changed: 68 additions & 0 deletions
diff --git a/‎features/support/scenarios_model_mapping.ts‎
Lines changed: 18 additions & 0 deletions b/‎features/support/scenarios_model_mapping.ts‎
Lines changed: 18 additions & 0 deletions
@@ -4,13 +4,13 @@
     "spec_versions": {
         "v1": {
             "apigentools_version": "1.6.6",
-            "regenerated": "2024-05-23 19:28:50.345540",
-            "spec_repo_commit": "b9b11fda"
+            "regenerated": "2024-05-28 16:29:26.460549",
+            "spec_repo_commit": "9445af96"
         },
         "v2": {
             "apigentools_version": "1.6.6",
-            "regenerated": "2024-05-23 19:28:50.363667",
-            "spec_repo_commit": "b9b11fda"
+            "regenerated": "2024-05-28 16:29:26.478430",
+            "spec_repo_commit": "9445af96"
         }
     }
 }
@@ -17407,6 +17407,47 @@ components:
       - GEO_DATA
       - EVENT_COUNT
       - NONE
+    SecurityMonitoringRuleQueryPayload:
+      description: Payload to test a rule query with the expected result.
+      properties:
+        expectedResult:
+          description: Expected result of the test.
+          example: true
+          type: boolean
+        index:
+          description: Index of the query under test.
+          example: 0
+          format: int64
+          minimum: 0
+          type: integer
+        payload:
+          $ref: '#/components/schemas/SecurityMonitoringRuleQueryPayloadData'
+      type: object
+    SecurityMonitoringRuleQueryPayloadData:
+      additionalProperties: {}
+      description: Payload used to test the rule query.
+      properties:
+        ddsource:
+          description: Source of the payload.
+          example: nginx
+          type: string
+        ddtags:
+          description: Tags associated with your data.
+          example: env:staging,version:5.1
+          type: string
+        hostname:
+          description: The name of the originating host of the log.
+          example: i-012345678
+          type: string
+        message:
+          description: The message of the payload.
+          example: 2019-11-19T14:37:58,995 INFO [process.name][20081] Hello World
+          type: string
+        service:
+          description: The name of the application or service generating the data.
+          example: payment
+          type: string
+      type: object
     SecurityMonitoringRuleResponse:
       description: Create a new rule.
       oneOf:
@@ -17428,6 +17469,31 @@ components:
       - MEDIUM
       - HIGH
       - CRITICAL
+    SecurityMonitoringRuleTestRequest:
+      description: Test the rule queries of a rule.
+      properties:
+        rule:
+          $ref: '#/components/schemas/SecurityMonitoringRuleCreatePayload'
+        ruleQueryPayloads:
+          description: Data payloads used to test rules query with the expected result.
+          items:
+            $ref: '#/components/schemas/SecurityMonitoringRuleQueryPayload'
+          type: array
+      type: object
+    SecurityMonitoringRuleTestResponse:
+      description: Result of the test of the rule queries.
+      properties:
+        results:
+          description: 'Assert results are returned in the same order as the rule
+            query payloads.
+
+            For each payload, it returns True if the result matched the expected result,
+
+            False otherwise.'
+          items:
+            type: boolean
+          type: array
+      type: object
     SecurityMonitoringRuleThirdPartyOptions:
       description: Options on third party rules.
       properties:
@@ -32551,6 +32617,42 @@ paths:
       tags:
       - Security Monitoring
       x-codegen-request-body-name: body
+  /api/v2/security_monitoring/rules/test:
+    post:
+      description: Test a rule.
+      operationId: TestSecurityMonitoringRule
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/SecurityMonitoringRuleTestRequest'
+        required: true
+      responses:
+        '200':
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/SecurityMonitoringRuleTestResponse'
+          description: OK
+        '400':
+          $ref: '#/components/responses/BadRequestResponse'
+        '401':
+          $ref: '#/components/responses/ConcurrentModificationResponse'
+        '403':
+          $ref: '#/components/responses/NotAuthorizedResponse'
+        '404':
+          $ref: '#/components/responses/NotFoundResponse'
+        '429':
+          $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - security_monitoring_rules_write
+      summary: Test a rule
+      tags:
+      - Security Monitoring
+      x-codegen-request-body-name: body
   /api/v2/security_monitoring/rules/validation:
     post:
       description: Validate a detection rule.
@@ -32672,6 +32774,44 @@ paths:
       tags:
       - Security Monitoring
       x-codegen-request-body-name: body
+  /api/v2/security_monitoring/rules/{rule_id}/test:
+    post:
+      description: Test an existing rule.
+      operationId: TestExistingSecurityMonitoringRule
+      parameters:
+      - $ref: '#/components/parameters/SecurityMonitoringRuleID'
+      requestBody:
+        content:
+          application/json:
+            schema:
+              $ref: '#/components/schemas/SecurityMonitoringRuleTestRequest'
+        required: true
+      responses:
+        '200':
+          content:
+            application/json:
+              schema:
+                $ref: '#/components/schemas/SecurityMonitoringRuleTestResponse'
+          description: OK
+        '400':
+          $ref: '#/components/responses/BadRequestResponse'
+        '401':
+          $ref: '#/components/responses/ConcurrentModificationResponse'
+        '403':
+          $ref: '#/components/responses/NotAuthorizedResponse'
+        '404':
+          $ref: '#/components/responses/NotFoundResponse'
+        '429':
+          $ref: '#/components/responses/TooManyRequestsResponse'
+      security:
+      - apiKeyAuth: []
+        appKeyAuth: []
+      - AuthZ:
+        - security_monitoring_rules_write
+      summary: Test an existing rule
+      tags:
+      - Security Monitoring
+      x-codegen-request-body-name: body
   /api/v2/security_monitoring/signals:
     get:
       description: 'The list endpoint returns security signals that match a search
 
@@ -0,0 +1 @@
+"2024-05-28T11:40:33.484Z"
@@ -0,0 +1,67 @@
+{
+  "log": {
+    "_recordingName": "Security Monitoring/Test a rule returns \"OK\" response",
+    "creator": {
+      "comment": "persister:fs",
+      "name": "Polly.JS",
+      "version": "6.0.5"
+    },
+    "entries": [
+      {
+        "_id": "9e16bb521b2b35d5bb1c45bf6d266af0",
+        "_order": 0,
+        "cache": {},
+        "request": {
+          "bodySize": 853,
+          "cookies": [],
+          "headers": [
+            {
+              "_fromType": "array",
+              "name": "accept",
+              "value": "application/json"
+            },
+            {
+              "_fromType": "array",
+              "name": "content-type",
+              "value": "application/json"
+            }
+          ],
+          "headersSize": 591,
+          "httpVersion": "HTTP/1.1",
+          "method": "POST",
+          "postData": {
+            "mimeType": "application/json",
+            "params": [],
+            "text": "{\"rule\":{\"cases\":[{\"condition\":\"a > 0\",\"name\":\"\",\"notifications\":[],\"status\":\"info\"}],\"hasExtendedTitle\":true,\"isEnabled\":true,\"message\":\"My security monitoring rule message.\",\"name\":\"My security monitoring rule.\",\"options\":{\"decreaseCriticalityBasedOnEnv\":false,\"detectionMethod\":\"threshold\",\"evaluationWindow\":0,\"keepAlive\":0,\"maxSignalDuration\":0},\"queries\":[{\"aggregation\":\"count\",\"distinctFields\":[],\"groupByFields\":[\"@userIdentity.assumed_role\"],\"name\":\"\",\"query\":\"source:source_here\"}],\"tags\":[\"env:prod\",\"team:security\"],\"type\":\"log_detection\"},\"ruleQueryPayloads\":[{\"expectedResult\":true,\"index\":0,\"payload\":{\"ddsource\":\"source_here\",\"ddtags\":\"env:staging,version:5.1\",\"hostname\":\"i-012345678\",\"message\":\"2019-11-19T14:37:58,995 INFO [process.name][20081] Hello World\",\"service\":\"payment\",\"userIdentity\":{\"assumed_role\":\"fake assumed_role\"}}}]}"
+          },
+          "queryString": [],
+          "url": "https://api.datadoghq.com/api/v2/security_monitoring/rules/test"
+        },
+        "response": {
+          "bodySize": 19,
+          "content": {
+            "mimeType": "application/json",
+            "size": 19,
+            "text": "{\"results\":[true]}\n"
+          },
+          "cookies": [],
+          "headers": [
+            {
+              "name": "content-type",
+              "value": "application/json"
+            }
+          ],
+          "headersSize": 630,
+          "httpVersion": "HTTP/1.1",
+          "redirectURL": "",
+          "status": 200,
+          "statusText": "OK"
+        },
+        "startedDateTime": "2024-05-28T11:40:33.493Z",
+        "time": 544
+      }
+    ],
+    "pages": [],
+    "version": "1.2"
+  }
+}
@@ -0,0 +1,38 @@
+/**
+ * Test an existing rule returns "OK" response
+ */
+
+import { client, v2 } from "@datadog/datadog-api-client";
+
+const configuration = client.createConfiguration();
+const apiInstance = new v2.SecurityMonitoringApi(configuration);
+
+const params: v2.SecurityMonitoringApiTestExistingSecurityMonitoringRuleRequest =
+  {
+    body: {
+      ruleQueryPayloads: [
+        {
+          expectedResult: true,
+          index: 0,
+          payload: {
+            ddsource: "nginx",
+            ddtags: "env:staging,version:5.1",
+            hostname: "i-012345678",
+            message:
+              "2019-11-19T14:37:58,995 INFO [process.name][20081] Hello World",
+            service: "payment",
+          },
+        },
+      ],
+    },
+    ruleId: "rule_id",
+  };
+
+apiInstance
+  .testExistingSecurityMonitoringRule(params)
+  .then((data: v2.SecurityMonitoringRuleTestResponse) => {
+    console.log(
+      "API called successfully. Returned data: " + JSON.stringify(data)
+    );
+  })
+  .catch((error: any) => console.error(error));
@@ -0,0 +1,68 @@
+/**
+ * Test a rule returns "OK" response
+ */
+
+import { client, v2 } from "@datadog/datadog-api-client";
+
+const configuration = client.createConfiguration();
+const apiInstance = new v2.SecurityMonitoringApi(configuration);
+
+const params: v2.SecurityMonitoringApiTestSecurityMonitoringRuleRequest = {
+  body: {
+    rule: {
+      cases: [
+        {
+          name: "",
+          status: "info",
+          notifications: [],
+          condition: "a > 0",
+        },
+      ],
+      hasExtendedTitle: true,
+      isEnabled: true,
+      message: "My security monitoring rule message.",
+      name: "My security monitoring rule.",
+      options: {
+        decreaseCriticalityBasedOnEnv: false,
+        detectionMethod: "threshold",
+        evaluationWindow: 0,
+        keepAlive: 0,
+        maxSignalDuration: 0,
+      },
+      queries: [
+        {
+          query: "source:source_here",
+          groupByFields: ["@userIdentity.assumed_role"],
+          distinctFields: [],
+          aggregation: "count",
+          name: "",
+        },
+      ],
+      tags: ["env:prod", "team:security"],
+      type: "log_detection",
+    },
+    ruleQueryPayloads: [
+      {
+        expectedResult: true,
+        index: 0,
+        payload: {
+          ddsource: "source_here",
+          ddtags: "env:staging,version:5.1",
+          hostname: "i-012345678",
+          message:
+            "2019-11-19T14:37:58,995 INFO [process.name][20081] Hello World",
+          service: "payment",
+        },
+      },
+    ],
+  },
+};
+
+apiInstance
+  .testSecurityMonitoringRule(params)
+  .then((data: v2.SecurityMonitoringRuleTestResponse) => {
+    console.log(
+      "API called successfully. Returned data: " + JSON.stringify(data)
+    );
+  })
+  .catch((error: any) => console.error(error));
@@ -4573,6 +4573,13 @@ export const ScenariosModelMappings: {[key: string]: {[key: string]: any}} = {
             },
         "operationResponseType": "SecurityMonitoringRuleResponse",
     },
+    "v2.TestSecurityMonitoringRule": {
+        "body": {
+            "type": "SecurityMonitoringRuleTestRequest",
+            "format": "",
+            },
+        "operationResponseType": "SecurityMonitoringRuleTestResponse",
+    },
     "v2.ValidateSecurityMonitoringRule": {
         "body": {
             "type": "SecurityMonitoringRuleCreatePayload",
@@ -4605,6 +4612,17 @@ export const ScenariosModelMappings: {[key: string]: {[key: string]: any}} = {
             },
         "operationResponseType": "SecurityMonitoringRuleResponse",
     },
+    "v2.TestExistingSecurityMonitoringRule": {
+        "ruleId": {
+            "type": "string",
+            "format": "",
+            },
+        "body": {
+            "type": "SecurityMonitoringRuleTestRequest",
+            "format": "",
+            },
+        "operationResponseType": "SecurityMonitoringRuleTestResponse",
+    },
     "v2.ListSecurityMonitoringSignals": {
         "filterQuery": {
             "type": "string",
Original file line number	Diff line number	Diff line change
`@@ -4,13 +4,13 @@`
`4`	`4`	`"spec_versions": {`
`5`	`5`	`"v1": {`
`6`	`6`	`"apigentools_version": "1.6.6",`
`7`		`- "regenerated": "2024-05-23 19:28:50.345540",`
`8`		`- "spec_repo_commit": "b9b11fda"`
	`7`	`+ "regenerated": "2024-05-28 16:29:26.460549",`
	`8`	`+ "spec_repo_commit": "9445af96"`
`9`	`9`	`},`
`10`	`10`	`"v2": {`
`11`	`11`	`"apigentools_version": "1.6.6",`
`12`		`- "regenerated": "2024-05-23 19:28:50.363667",`
`13`		`- "spec_repo_commit": "b9b11fda"`
	`12`	`+ "regenerated": "2024-05-28 16:29:26.478430",`
	`13`	`+ "spec_repo_commit": "9445af96"`
`14`	`14`	`}`
`15`	`15`	`}`
`16`	`16`	`}`