-
Notifications
You must be signed in to change notification settings - Fork 15
/
Handle_Hello_World_Alert.yml
99 lines (99 loc) · 2.17 KB
/
Handle_Hello_World_Alert.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
id: Handle Hello World Alert
version: 1
contentitemexportablefields:
contentitemfields:
packID: HelloWorld
packName: HelloWorld
itemVersion: 1.2.10
fromServerVersion: 5.0.0
toServerVersion: ""
definitionid: ""
vcShouldKeepItemLegacyProdMachine: false
name: Handle Hello World Alert
description: This is a playbook which will handle the alerts coming from the Hello
World service
starttaskid: "0"
tasks:
"0":
id: "0"
taskid: 1dbb6661-592f-4989-a712-afb1d3125c5b
type: start
task:
id: 1dbb6661-592f-4989-a712-afb1d3125c5b
version: -1
name: ""
iscommand: false
brand: ""
nexttasks:
'#none#':
- "1"
separatecontext: false
continueonerrortype: ""
view: |-
{
"position": {
"x": 50,
"y": 50
}
}
note: false
timertriggers: []
ignoreworker: false
skipunavailable: false
quietmode: 0
isoversize: false
isautoswitchedtoquietmode: false
"1":
id: "1"
taskid: 7a16e30b-cd8b-45ce-81cd-b19f9c603dc0
type: regular
task:
id: 7a16e30b-cd8b-45ce-81cd-b19f9c603dc0
version: -1
name: Get alert details
description: Retrieve alert details for a HelloWorld alert by alert ID
script: '|||helloworld-get-alert'
type: regular
iscommand: true
brand: ""
scriptarguments:
alert_id:
simple: ${inputs.AlertID}
separatecontext: false
continueonerrortype: ""
view: |-
{
"position": {
"x": 50,
"y": 195
}
}
note: false
timertriggers: []
ignoreworker: false
skipunavailable: false
quietmode: 0
isoversize: false
isautoswitchedtoquietmode: false
system: true
view: |-
{
"linkLabelsPosition": {},
"paper": {
"dimensions": {
"height": 240,
"width": 380,
"x": 50,
"y": 50
}
}
}
inputs:
- key: AlertID
value:
simple: ${incident.helloworldid}
required: false
description: Alert ID to retrieve details for. By default retrieves from the HelloWorld
ID custom field in the HelloWorld incident type
playbookInputQuery: null
outputs: []