elastic
diff --git a/‎.github/workflows/react-tests-dispatcher.yml‎
Lines changed: 0 additions & 1 deletion b/‎.github/workflows/react-tests-dispatcher.yml‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎detection_rules/etc/integration-manifests.json.gz‎
-285 Bytes b/‎detection_rules/etc/integration-manifests.json.gz‎
-285 Bytes
diff --git a/‎detection_rules/etc/integration-schemas.json.gz‎
-3.25 KB b/‎detection_rules/etc/integration-schemas.json.gz‎
-3.25 KB
diff --git a/‎detection_rules/schemas/definitions.py‎
Lines changed: 1 addition & 1 deletion b/‎detection_rules/schemas/definitions.py‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎pyproject.toml‎
Lines changed: 1 addition & 1 deletion b/‎pyproject.toml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎rules/integrations/pad/privileged_access_ml_linux_high_count_privileged_process_events_by_user.toml‎
Lines changed: 0 additions & 99 deletions b/‎rules/integrations/pad/privileged_access_ml_linux_high_count_privileged_process_events_by_user.toml‎
Lines changed: 0 additions & 99 deletions
diff --git a/‎rules/integrations/pad/privileged_access_ml_linux_high_median_process_command_line_entropy_by_user.toml‎
Lines changed: 0 additions & 99 deletions b/‎rules/integrations/pad/privileged_access_ml_linux_high_median_process_command_line_entropy_by_user.toml‎
Lines changed: 0 additions & 99 deletions
@@ -22,7 +22,6 @@ on:
       - '!rules/integrations/o365/*.toml'
       - '!rules/integrations/okta/*.toml'
       - '!rules/integrations/problemchild/*.toml'
-      - '!rules/integrations/pad/*.toml'
 
 jobs:
   dispatch:
 
@@ -178,7 +178,7 @@ def validator(value):
     'Use Case: Vulnerability'
 ]
 NonEmptyStr = NewType('NonEmptyStr', str, validate=validate.Length(min=1))
-MACHINE_LEARNING_PACKAGES = ['LMD', 'DGA', 'DED', 'ProblemChild', 'Beaconing', 'PAD']
+MACHINE_LEARNING_PACKAGES = ['LMD', 'DGA', 'DED', 'ProblemChild', 'Beaconing']
 AlertSuppressionGroupBy = NewType('AlertSuppressionGroupBy', List[NonEmptyStr], validate=validate.Length(min=1, max=3))
 AlertSuppressionMissing = NewType('AlertSuppressionMissing', str,
                                   validate=validate.OneOf(['suppress', 'doNotSuppress']))
 
@@ -1,6 +1,6 @@
 [project]
 name = "detection_rules"
-version = "0.4.24"
+version = "0.4.23"
 description = "Detection Rules is the home for rules used by Elastic Security. This repository is used for the development, maintenance, testing, validation, and release of rules for Elastic Security’s Detection Engine."
 readme = "README.md"
 requires-python = ">=3.12"
Original file line number	Diff line number	Diff line change
`@@ -178,7 +178,7 @@ def validator(value):`
`178`	`178`	`'Use Case: Vulnerability'`
`179`	`179`	`]`
`180`	`180`	`NonEmptyStr = NewType('NonEmptyStr', str, validate=validate.Length(min=1))`
`181`		`-MACHINE_LEARNING_PACKAGES = ['LMD', 'DGA', 'DED', 'ProblemChild', 'Beaconing', 'PAD']`
	`181`	`+MACHINE_LEARNING_PACKAGES = ['LMD', 'DGA', 'DED', 'ProblemChild', 'Beaconing']`
`182`	`182`	`AlertSuppressionGroupBy = NewType('AlertSuppressionGroupBy', List[NonEmptyStr], validate=validate.Length(min=1, max=3))`
`183`	`183`	`AlertSuppressionMissing = NewType('AlertSuppressionMissing', str,`
`184`	`184`	`validate=validate.OneOf(['suppress', 'doNotSuppress']))`