Skip to content

Add EUIDs to UEBA integrations#17626

Draft
jmcarlock wants to merge 6 commits intomainfrom
ueba-9.4-euid-update
Draft

Add EUIDs to UEBA integrations#17626
jmcarlock wants to merge 6 commits intomainfrom
ueba-9.4-euid-update

Conversation

@jmcarlock
Copy link
Contributor

@jmcarlock jmcarlock commented Mar 2, 2026

Proposed commit message

Adds EUIDs to UEBA packages for Entity Analytics updates in the 9.4 release.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

How to test this PR locally

Test with ITP

@jmcarlock jmcarlock added the enhancement New feature or request label Mar 2, 2026
@github-actions
Copy link
Contributor

github-actions bot commented Mar 2, 2026
edited
Loading

Vale Linting Results

Summary: 1 warning, 8 suggestions found

⚠️ Warnings (1)
File Line Rule Message
packages/ded/docs/README.md 80 Elastic.Latinisms Latin terms and abbreviations are a common source of confusion. Use 'using' instead of 'via'.
💡 Suggestions (8)
File Line Rule Message
packages/ded/docs/README.md 49 Elastic.Wordiness Consider using 'if' instead of 'In the event that'.
packages/ded/docs/README.md 104 Elastic.Wordiness Consider using 'use' instead of 'utilize'.
packages/dga/docs/README.md 113 Elastic.Wordiness Consider using 'use' instead of 'utilize'.
packages/lmd/docs/README.md 163 Elastic.Wordiness Consider using 'use' instead of 'utilize'.
packages/pad/docs/README.md 96 Elastic.Wordiness Consider using 'if' instead of 'In the event that'.
packages/pad/docs/README.md 161 Elastic.Wordiness Consider using 'use' instead of 'utilize'.
packages/problemchild/docs/README.md 16 Elastic.WordChoice Consider using 'refer to (if it's a document), view (if it's a UI element)' instead of 'see', unless the term is in the UI.
packages/problemchild/docs/README.md 162 Elastic.Wordiness Consider using 'use' instead of 'utilize'.

The Vale linter checks documentation changes against the Elastic Docs style guide.

To use Vale locally or report issues, refer to Elastic style guide for Vale.

@andrewkroh andrewkroh added documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. Integration:ded Data Exfiltration Detection Integration:lmd Lateral Movement Detection Integration:dga Domain Generation Algorithm Detection Integration:pad Privileged Access Detection Integration:problemchild Living off the Land Attack Detection dashboard Relates to a Kibana dashboard bug, enhancement, or modification. labels Mar 3, 2026
@andrewkroh andrewkroh added the Integration:hta Host Traffic Anomalies label Mar 3, 2026
@elasticmachine
Copy link

elasticmachine commented Mar 4, 2026

💚 Build Succeeded

History

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sodhikirti07 sodhikirti07 sodhikirti07 left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dashboard Relates to a Kibana dashboard bug, enhancement, or modification. documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. enhancement New feature or request Integration:ded Data Exfiltration Detection Integration:dga Domain Generation Algorithm Detection Integration:hta Host Traffic Anomalies Integration:lmd Lateral Movement Detection Integration:pad Privileged Access Detection Integration:problemchild Living off the Land Attack Detection

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@jmcarlock @elasticmachine @sodhikirti07 @andrewkroh