Merge pull request #101 from intezer/feat(endpoint)/filter-by-compute…

…r-names Add filter endpoint scan by computer-names
intezer · Jul 3, 2023 · 0718959 · 0718959
2 parents 64de124 + c57324f
commit 0718959
Show file tree

Hide file tree

Showing 3 changed files with 12 additions and 6 deletions.
diff --git a/CHANGES b/CHANGES
@@ -1,18 +1,17 @@
 1.17.4
 ______
 - Add verdict property to `UrlAnalysis` and `EndpointAnalysis`
-
+- Add endpoint scans filter by computer names
 
 1.17.3
 ______
- - Raise `UrlOfflineError` when analyzing a url that seems offline.
- - Don't set `composed_only` of `from_latest_hash_analysis` if not explicitly set.
- - Add optional day limit to `from_latest_hash_analysis`.
-
+- Raise `UrlOfflineError` when analyzing a url that seems offline.
+- Don't set `composed_only` of `from_latest_hash_analysis` if not explicitly set.
+- Add optional day limit to `from_latest_hash_analysis`.
 
 1.17.2
 ______
- - Support check availability.
+- Support check availability.
 
 1.17.1
 ______

diff --git a/intezer_sdk/analyses_history.py b/intezer_sdk/analyses_history.py
@@ -70,6 +70,7 @@ def query_endpoint_analyses_history(*,
                                     aggregated_view: bool = None,
                                     sources: List[str] = None,
                                     verdicts: List[str] = None,
+                                    computer_names: List[str] = None,
                                     limit: int = DEFAULT_LIMIT,
                                     offset: int = DEFAULT_OFFSET
                                     ) -> AnalysesHistoryResult:
@@ -82,6 +83,7 @@ def query_endpoint_analyses_history(*,
     :param aggregated_view: Should the result be aggregated by latest computer.
     :param sources: Filter the analyses by its source.
     :param verdicts: Filter by the analysis's verdict
+    :param computer_names: Filter by computer names
     :param limit: Number of analyses returned by the query.
     :param offset: Number of analyses to skips the before beginning to return the analyses.
     :return: Endpoint query result from server as Results iterator.
@@ -94,6 +96,7 @@ def query_endpoint_analyses_history(*,
         aggregated_view=aggregated_view,
         sources=sources,
         verdicts=verdicts,
+        computer_names=computer_names,
         limit=limit,
         offset=offset
     )
@@ -157,6 +160,7 @@ def generate_analyses_history_filter(*,
                                      aggregated_view: bool = None,
                                      sources: List[str] = None,
                                      verdicts: List[str] = None,
+                                     computer_names: List[str] = None,
                                      limit: int = DEFAULT_LIMIT,
                                      offset: int = DEFAULT_OFFSET
                                      ) -> Dict[str, Any]:
@@ -172,4 +176,6 @@ def generate_analyses_history_filter(*,
         base_filter['sources'] = sources
     if verdicts:
         base_filter['verdicts'] = verdicts
+    if computer_names:
+        base_filter['computer_names'] = computer_names
     return base_filter
diff --git a/tests/unit/test_results.py b/tests/unit/test_results.py
@@ -166,6 +166,7 @@ def test_endpoint_analyses_history_happy_flow(self):
                 aggregated_view=False,
                 sources=["xsoar"],
                 verdicts=['malicious'],
+                computer_names=['host-name'],
             )
             for result in results:
                 assert result