[ASM] - Parent Playbook Input Typo (#36450) (#36499)

* fix typo * RN * RN try 2 * Update Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_52.md --------- Co-authored-by: johnnywilkes <32227961+johnnywilkes@users.noreply.github.com> Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> Co-authored-by: israelpoli <72099621+israelpoli@users.noreply.github.com>
demisto · Sep 25, 2024 · 26983da · 26983da
1 parent 0f8eca3
commit 26983da
Show file tree

Hide file tree

Showing 4 changed files with 12 additions and 6 deletions.
diff --git a/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml b/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert.yml
@@ -1966,7 +1966,7 @@ tasks:
           right:
             value:
               complex:
-                root: inputs.AcceptedRiskDs
+                root: inputs.AcceptedRiskIDs
             iscontext: true
         - operator: inList
           left:
@@ -3517,7 +3517,7 @@ inputs:
 
     Set to "True" if you want to bypass.  Default is "False".
   playbookInputQuery:
-- key: AcceptedRiskDs
+- key: AcceptedRiskIDs
   value: {}
   required: false
   description: Comma-separated list of instance/VM IDs that are considered an accepted risk and that should be closed.
@@ -3560,7 +3560,7 @@ inputSections:
   - RemediationNotificationSubject
   - RemediationNotificationHTMLBody
   - BypassDevCheck
-  - AcceptedRiskDs
+  - AcceptedRiskIDs
   - AcceptedRiskProjects
   - AcceptedRiskOther
   - JiraProjectKey

diff --git a/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert_README.md b/Packs/CortexAttackSurfaceManagement/Playbooks/Cortex_ASM_-_ASM_Alert_README.md
@@ -44,8 +44,8 @@ This playbook does not use any integrations.
 | RemediationNotificationSubject | Subject of the notification \(email or ticket\) sent to the service owner after remediation. | A new security risk was addressed on an external service owned by your team | Required |
 | RemediationNotificationHTMLBody | Body of the notification \(email or ticket\) sent to the service owner after remediation. | &lt;!DOCTYPE html&gt;<br/>&lt;html lang="en"&gt;<br/>&lt;body&gt;<br/>    &lt;p&gt;<br/>        Infosec identified a security risk on an external service potentially owned by your<br/>        team:&lt;br&gt;&lt;b&gt;${alert.name}&lt;/b&gt;<br/>    &lt;/p&gt;<br/>    &lt;p&gt;<br/>        &lt;b&gt;Alert Details:&lt;/b&gt; ${alert.details}&lt;br&gt;<br/>        &lt;b&gt;Action Taken:&lt;/b&gt; ${alert.asmremediation.[0].action}&lt;br&gt;<br/>        &lt;b&gt;Action Outcome:&lt;/b&gt; ${alert.asmremediation.[0].outcome}&lt;br&gt;<br/>    &lt;/p&gt;<br/>&lt;/body&gt;<br/>&lt;/html&gt; | Required |
 | BypassDevCheck | Determine whether to bypass the Dev Check in automated remediation criteria: https://docs-cortex.paloaltonetworks.com/r/Cortex-XPANSE/Cortex-Xpanse-Expander-User-Guide/Automated-Remediation-Capabilities-Matrix<br/><br/>Set to "True" if you want to bypass.  Default is "False". | False | Optional |
-| AcceptedRiskDs | Comma-separated list of instance/VM IDs that are considered an accepted risk and that should be closed. |  | Optional |
-| AcceptedRiskProjects | Comma-separated list of projects numbers that are considered an accepted risk and that should be closed.  For example, a list of GCP projects and AWS accounts. |  | Optional |
+| AcceptedRiskIDs | Comma-separated list of instance/VM IDs that are considered an accepted risk and that should be closed. |  | Optional |
+| AcceptedRiskProjects | Comma-separated list of projects numbers that are considered an accepted risk and that should be closed.  For example, a list of GCP projects, names of Azure Resource Groups, and AWS accounts. |  | Optional |
 | AcceptedRiskOther | Comma-separated list of other items that are considered an accepted risk and that should be closed. For example, a list of folders numbers in GCP and subscription IDs in Azure. |  | Optional |
 | JiraProjectKey | The Jira project key to associate with the issue. |  | Required |
 | AWSAssumeRoleName | If assuming roles for AWS, this is the name of the role to assume \(should be the same for all organizations\). |  | Optional |

diff --git a/Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_52.md b/Packs/CortexAttackSurfaceManagement/ReleaseNotes/1_7_52.md
@@ -0,0 +1,6 @@
+
+#### Playbooks
+
+##### Cortex ASM - ASM Alert
+
+Fixed an issue with the spelling of a playbook input.
diff --git a/Packs/CortexAttackSurfaceManagement/pack_metadata.json b/Packs/CortexAttackSurfaceManagement/pack_metadata.json
@@ -2,7 +2,7 @@
     "name": "Cortex Attack Surface Management",
     "description": "Content for working with Attack Surface Management (ASM).",
     "support": "xsoar",
-    "currentVersion": "1.7.51",
+    "currentVersion": "1.7.52",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",