Merged
Conversation
Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
…ith filtering and download functionalities
…oved item size and input handling Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
…in Threat and Windows activity dashboards
… with improved logging and repository integration
…rove asset name escaping
…rsary terminology
Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
…t selection and loading states
Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
…ut and event handling Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
…ut and event handling Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
… improve log retrieval efficiency
Signed-off-by: Manuel Abascal <mjabascal10@gmail.com>
Contributor
There was a problem hiding this comment.
Pull request overview
This pull request implements version 11.1.6 of UTMStack with enhancements to alert management, AWS plugin improvements, dashboard filters, and various bug fixes across frontend and backend components.
Key Changes:
- Enhanced AWS CloudWatch logs retrieval with adaptive retry logic and rate limiting
- Updated alert data model to use
eventsinstead oflogswith improved email notifications - Optimized asset synchronization with improved transaction handling and batch processing
- Updated dashboard filters for threat and Windows activity monitoring
Reviewed changes
Copilot reviewed 33 out of 34 changed files in this pull request and generated 5 comments.
Show a summary per file
| File | Description |
|---|---|
| plugins/aws/main.go | Implemented adaptive retry strategy and rate limiting for AWS API calls |
| plugins/aws/go.mod | Removed unused dependency and made gRPC/protobuf direct dependencies |
| frontend/src/app/shared/types/alert/utm-alert.type.ts | Added lastEvent field to alert type |
| frontend/src/app/shared/components/utm/table/utm-items-per-page/utm-items-per-page.component.ts | Made itemsAmount configurable as input |
| frontend/src/app/rule-management/share/generic-filter/generic-filter.component.ts | Removed debug console.log statement |
| frontend/src/app/rule-management/models/rule.model.ts | Increased default page size from 25 to 100 |
| frontend/src/app/rule-management/app-rule/components/rule-list/rule-list.component.ts | Code formatting and removed unused imports |
| frontend/src/app/rule-management/app-rule/components/rule-list/rule-list.component.html | Fixed typo in tooltip and bound itemsAmount input |
| frontend/src/app/data-management/alert-management/alert-view/alert-view.component.ts | Increased default items per page by 4x |
| frontend/src/app/data-management/alert-management/alert-view/alert-view.component.html | Bound itemsAmount input to component property |
| frontend/src/app/data-management/alert-management/alert-full-detail/alert-full-detail.component.ts | Refactored alert data access from logs to events with improved error handling |
| frontend/src/app/data-management/alert-management/alert-full-detail/alert-full-detail.component.scss | Added responsive print styles |
| frontend/src/app/data-management/alert-management/alert-full-detail/alert-full-detail.component.html | Added flex container for proper layout |
| frontend/src/app/app-management/layout/app-management-sidebar/app-management-sidebar.component.html | Commented out Identity Providers menu item |
| frontend/src/app/app-management/app-logs/app-logs.component.ts | Reduced log query limit from 10M to 100K |
| backend/src/main/resources/templates/mail/fragments/alert-detail-fragment.html | Updated to use new alert model with target/adversary terminology |
| backend/src/main/resources/templates/mail/alertEmailAttachment.html | Updated to use events and geolocation data structure |
| backend/src/main/resources/config/liquibase/master.xml | Added new changelog references for dashboard filters |
| backend/src/main/resources/config/liquibase/changelog/20251223003_update_filter_wineventlog.xml | Updated Windows event log filter with comprehensive event decoding |
| backend/src/main/resources/config/liquibase/changelog/20251223002_update_filters_windows_activity_dashboard.xml | Updated field references in Windows activity dashboard |
| backend/src/main/resources/config/liquibase/changelog/20251223001_update_filters_threat_activity_dashboard.xml | Updated filters for threat activity dashboard visualizations |
| backend/src/main/java/com/park/utmstack/web/rest/UserJWTController.java | Fixed JWT token creation to respect rememberMe flag |
| backend/src/main/java/com/park/utmstack/service/network_scan/UtmNetworkScanService.java | Removed throws declaration from save method |
| backend/src/main/java/com/park/utmstack/service/impl/UtmAlertServiceImpl.java | Simplified alert email sending using events directly |
| backend/src/main/java/com/park/utmstack/service/correlation/config/UtmDataTypesService.java | Code formatting and improved error logging |
| backend/src/main/java/com/park/utmstack/service/agent_manager/AgentService.java | Optimized agent synchronization with better transaction handling |
| backend/src/main/java/com/park/utmstack/service/UtmDataInputStatusService.java | Improved asset synchronization with batched saves and transactional integrity |
| backend/src/main/java/com/park/utmstack/service/UtmAlertTagRuleService.java | Fixed filter operator from IS_NOT to EXIST |
| backend/src/main/java/com/park/utmstack/service/MailService.java | Updated to use Event type instead of LogType |
| backend/src/main/java/com/park/utmstack/security/saml/Saml2LoginSuccessHandler.java | Simplified authority mapping |
| backend/src/main/java/com/park/utmstack/repository/network_scan/UtmNetworkScanRepository.java | Added methods for bulk queries and fixed deletion query |
| backend/src/main/java/com/park/utmstack/domain/shared_types/alert/Event.java | Added helper methods for log formatting and timestamp conversion |
| CHANGELOG.md | Updated version and release notes |
Comments suppressed due to low confidence (1)
backend/src/main/java/com/park/utmstack/service/agent_manager/AgentService.java:1
- This condition checks for three different update levels. Consider extracting this logic into a named method like
shouldUpdateAsset(asset)to improve readability and make the intention clearer.
package com.park.utmstack.service.agent_manager;
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
backend/src/main/java/com/park/utmstack/service/UtmDataInputStatusService.java
Show resolved
Hide resolved
backend/src/main/java/com/park/utmstack/service/correlation/config/UtmDataTypesService.java
Outdated
Show resolved
Hide resolved
backend/src/main/java/com/park/utmstack/repository/network_scan/UtmNetworkScanRepository.java
Show resolved
Hide resolved
backend/src/main/java/com/park/utmstack/service/UtmDataInputStatusService.java
Show resolved
Hide resolved
…nfig/UtmDataTypesService.java Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Kbayero
approved these changes
Jan 2, 2026
osmontero
approved these changes
Jan 2, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
PLEASE READ BEFORE CONTINUING
To help us understand your contribution, please include the following in your pull request: