[SIEM][Detections] Create API for closing all alerts that match an exception #65940
Labels
enhancement
New value added to drive a business result
Feature:Detection Rules
Anything related to Security Solution's Detection Rules
Team:Endpoint Response
Endpoint Response Team
Team: SecuritySolution
Security Solutions Team working on SIEM, Endpoint, Timeline, Resolver, etc.
Team:SIEM
v7.9.0
When adding or editing Exception Lists, the user has the option to
close all alerts that match this exception
. This issue is for creating an API that can take anexceptionListId
,state
, and update all matching alerts to the provided state.The text was updated successfully, but these errors were encountered: