Feat: [1148] - enrichment extension (#1149)

#### Related Issue: 1148 #1148 #### Description of changes: extending - enrichment by: time, recommended - The timestamp when the enrichment data was generated. desc optional - A long description of the enrichment data. reputation optional - The reputation of the enrichment data short_desc, recommended - A short description of the enrichment data. url_string, recommended - The URL of the source of the enrichment data --------- Signed-off-by: Pavel Jurka <[email protected]> Signed-off-by: Rajas <[email protected]> Co-authored-by: Rajas <[email protected]>
ocsf · Jul 30, 2024 · 85a36b7 · 85a36b7
1 parent e651e9d
commit 85a36b7
Show file tree

Hide file tree

Showing 3 changed files with 27 additions and 1 deletion.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -79,14 +79,15 @@ Thankyou! -->
     2. Added `account`, `device`, `email`, `url`, `user` to `evidences` in detection finding. #1000
     3. Added `state_id`, `state` to `Digital Signature` object. #1069
     4. Added `domain` to `Uniform Resource Locator` object. #1096
-    5. Added `reg_key` and `reg_value` to `Evidence Artifacts` object. #1078  
+    5. Added `reg_key` and `reg_value` to `Evidence Artifacts` object. #1078
     6. Added `type_id` and associated entity objects to `Managed Entity`. #1094
     7. Added `vendor_name`, `type`, `type_id` to object `package`. #1093
     8. Added `router`, `ids`, and `ips` entries to `type_id` enum in the `Endpoint` object. #1121
     9. Added `job` to `Evidence Artifacts` object. #1130
     10. Added `ip` to object `load_balancer`. #1138
     11. Added `cpe_name` and `hash` to `Software Package` object. #1142
     12. Added `avg_timespan` to the `kb_article` object. #1125
+    13. 10. Added `created_time`,`desc`, `short_desc`, `reputation`, `src_url` to `enrichment` object. #1149
 * #### Platform Extensions
 
 ### Bugfixes

diff --git a/dictionary.json b/dictionary.json
@@ -4111,6 +4111,11 @@
         }
       }
     },
+    "short_desc": {
+      "caption": "Short Description",
+      "description": "The short description that pertains to the object or event. See specific usage.",
+      "type": "string_t"
+    },
     "signature": {
       "caption": "Digital Signature",
       "description": "The digital signature of the file.",

diff --git a/objects/enrichment.json b/objects/enrichment.json
@@ -4,10 +4,18 @@
   "extends": "object",
   "name": "enrichment",
   "attributes": {
+    "created_time": {
+      "description": "The time when the enrichment data was generated.",
+      "requirement": "recommended"
+    },
     "data": {
       "description": "The enrichment data associated with the attribute and value. The meaning of this data depends on the type the enrichment record.",
       "requirement": "required"
     },
+    "desc": {
+      "description": "A long description of the enrichment data.",
+      "requirement": "optional"
+    },
     "name": {
       "description": "The name of the attribute to which the enriched data pertains.",
       "requirement": "required"
@@ -16,10 +24,22 @@
       "description": "The enrichment data provider name.",
       "requirement": "recommended"
     },
+    "reputation": {
+      "description": "The reputation of the enrichment data.",
+      "requirement": "optional"
+    },
+    "short_desc": {
+      "description": "A short description of the enrichment data.",
+      "requirement": "recommended"
+    },
     "type": {
       "description": "The enrichment type. For example: <code>location</code>.",
       "requirement": "recommended"
     },
+    "src_url": {
+      "description": "The URL of the source of the enrichment data.",
+      "requirement": "recommended"
+    },
     "value": {
       "description": "The value of the attribute to which the enriched data pertains.",
       "requirement": "required"