tenable_sc: update tested versions note and user agent string (#11721)

It appears that the API has become more strict with the user-agent string format that is acceptable. Using the format that was previously in place, including the filebeat component of the string, results in a 403 unauthorized, so conform exactly to the format described in the developer documentation. ref:https://developer.tenable.com/docs/user-agent-header
elastic · Nov 15, 2024 · 7d8db5e · 7d8db5e
1 parent 17a85a2
commit 7d8db5e
Show file tree

Hide file tree

Showing 7 changed files with 14 additions and 6 deletions.
diff --git a/packages/tenable_sc/_dev/build/docs/README.md b/packages/tenable_sc/_dev/build/docs/README.md
@@ -4,7 +4,7 @@ The Tenable.sc integration collects and parses data from the [Tenable.sc](https:
 
 ## Compatibility
 
-This module has been tested against `Tenable.sc version 5.23`.
+This module has been tested against `Tenable.sc version 5.23` and `Tenable.sc version 6.4.0`.
 
 ## Requirements
 

diff --git a/packages/tenable_sc/changelog.yml b/packages/tenable_sc/changelog.yml
@@ -1,4 +1,12 @@
 # newer versions go on top
+- version: "1.24.0"
+  changes:
+    - description: Update tested versions note.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/11721
+    - description: Conform agent user agent string to documented format requirement.
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/11721
 - version: "1.23.0"
   changes:
     - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template.

diff --git a/packages/tenable_sc/data_stream/asset/agent/stream/httpjson.yml.hbs b/packages/tenable_sc/data_stream/asset/agent/stream/httpjson.yml.hbs
@@ -20,7 +20,7 @@ request.transforms:
       # Follow Tenable's format: https://developer.tenable.com/docs/user-agent-header
       # NOTE: The "Build" version must be kept in sync with this package's version.
       target: header.User-Agent
-      value: '[[userAgent "Integration/1.0 (Elastic; Tenable.sc; Build/1.22.0)"]]'
+      value: 'Integration/1.0 (Elastic; Tenable.sc; Build/1.24.0)'
   - set:
       target: body.query.tool
       value: 'sumip'

diff --git a/packages/tenable_sc/data_stream/plugin/agent/stream/httpjson.yml.hbs b/packages/tenable_sc/data_stream/plugin/agent/stream/httpjson.yml.hbs
@@ -20,7 +20,7 @@ request.transforms:
       # Follow Tenable's format: https://developer.tenable.com/docs/user-agent-header
       # NOTE: The "Build" version must be kept in sync with this package's version.
       target: header.User-Agent
-      value: '[[userAgent "Integration/1.0 (Elastic; Tenable.sc; Build/1.22.0)"]]'
+      value: 'Integration/1.0 (Elastic; Tenable.sc; Build/1.24.0)'
   - set:
       target: url.params.fields
       value: id,name,description,family,type,copyright,version,sourceFile,dependencies,requiredPorts,requiredUDPPorts,cpe,srcPort,dstPort,protocol,riskFactor,solution,seeAlso,synopsis,checkType,exploitEase,exploitAvailable,exploitFrameworks,cvssVector,cvssVectorBF,baseScore,temporalScore,cvssV3Vector,cvssV3VectorBF,cvssV3BaseScore,cvssV3TemporalScore,vprScore,vprContext,stigSeverity,pluginPubDate,pluginModDate,patchPubDate,patchModDate,vulnPubDate,modifiedTime,md5,xrefs

diff --git a/packages/tenable_sc/data_stream/vulnerability/agent/stream/httpjson.yml.hbs b/packages/tenable_sc/data_stream/vulnerability/agent/stream/httpjson.yml.hbs
@@ -20,7 +20,7 @@ request.transforms:
       # Follow Tenable's format: https://developer.tenable.com/docs/user-agent-header
       # NOTE: The "Build" version must be kept in sync with this package's version.
       target: header.User-Agent
-      value: '[[userAgent "Integration/1.0 (Elastic; Tenable.sc; Build/1.22.0)"]]'
+      value: 'Integration/1.0 (Elastic; Tenable.sc; Build/1.24.0)'
   - set:
       target: body.query.tool
       value: 'vulndetails'

diff --git a/packages/tenable_sc/docs/README.md b/packages/tenable_sc/docs/README.md
@@ -4,7 +4,7 @@ The Tenable.sc integration collects and parses data from the [Tenable.sc](https:
 
 ## Compatibility
 
-This module has been tested against `Tenable.sc version 5.23`.
+This module has been tested against `Tenable.sc version 5.23` and `Tenable.sc version 6.4.0`.
 
 ## Requirements
 

diff --git a/packages/tenable_sc/manifest.yml b/packages/tenable_sc/manifest.yml
@@ -2,7 +2,7 @@ format_version: "3.0.2"
 name: tenable_sc
 title: Tenable.sc
 # The version must be updated in the input configuration templates as well, in order to set the correct User-Agent header. Until elastic/kibana#121310 is implemented we will have to manually sync these.
-version: "1.23.0"
+version: "1.24.0"
 description: |
   Collect logs from Tenable.sc with Elastic Agent.
 type: integration