Update windows_sql_server_critical_procedures_enabled.yml

patel-bhavin · web-flow · commit 0823e539789f · 2025-09-03T09:18:14.000-07:00
diff --git a/detections/endpoint/windows_sql_server_critical_procedures_enabled.yml b/detections/endpoint/windows_sql_server_critical_procedures_enabled.yml
@@ -71,7 +71,7 @@ tags:
   - Splunk Enterprise Security
   - Splunk Cloud
   security_domain: endpoint
-    manual_test: The risk message is dynamically generated in the SPL and it needs to be manually tested for integration testing. 
+  manual_test: The risk message is dynamically generated in the SPL and it needs to be manually tested for integration testing. 
 tests:
 - name: True Positive Test
   attack_data:
