Reference documentation and code samples for the Google Cloud Chronicle V1 Client class DataSource.
LINT.IfChange(data_sources)
Protobuf type google.cloud.chronicle.v1.DataSource
Namespace
Google \ Cloud \ Chronicle \ V1Methods
static::name
value
mixed
static::value
name
mixed
Constants
DATA_SOURCE_UNSPECIFIED
Value: 0
Generated from protobuf enum DATA_SOURCE_UNSPECIFIED = 0;
UDM
Value: 1
Generated from protobuf enum UDM = 1;
ENTITY
Value: 2
Generated from protobuf enum ENTITY = 2;
INGESTION_METRICS
Value: 3
Generated from protobuf enum INGESTION_METRICS = 3;
RULE_DETECTIONS
Value: 4
RULE_DETECTIONS is used for detections datasource.
Generated from protobuf enum RULE_DETECTIONS = 4;
RULESETS
Value: 5
RULESETS is used for ruleset with detections datasource.
Generated from protobuf enum RULESETS = 5;
PBGLOBAL
Value: 6
GLOBAL is used for standard time range filter.
Generated from protobuf enum GLOBAL = 6;
IOC_MATCHES
Value: 7
IOC_MATCHES is used for ioc_matches datasource.
Generated from protobuf enum IOC_MATCHES = 7;
RULES
Value: 8
RULES is used for rules datasource.
Generated from protobuf enum RULES = 8;
SOAR_CASES
Value: 9
SOAR Cases - identified as case
.
Generated from protobuf enum SOAR_CASES = 9;
SOAR_PLAYBOOKS
Value: 10
SOAR Playbooks - identified as playbook
.
Generated from protobuf enum SOAR_PLAYBOOKS = 10;
SOAR_CASE_HISTORY
Value: 11
SOAR Case History - identified as case_history
.
Generated from protobuf enum SOAR_CASE_HISTORY = 11;
DATA_TABLE
Value: 12
DATA_TABLE is used for data tables source.
Generated from protobuf enum DATA_TABLE = 12;
INVESTIGATION
Value: 13
INVESTIGATION is used as the data source for triage agent investigations.
Identified as gemini_investigation
.
Generated from protobuf enum INVESTIGATION = 13;
INVESTIGATION_FEEDBACK
Value: 14
INVESTIGATION_FEEDBACK is used as the data source for user feedback on
triage agent investigations. Identified as gemini_investigation_feedback
.
Generated from protobuf enum INVESTIGATION_FEEDBACK = 14;
