CRTX-161093-Agentix-Automation-Dashboards-fix (demisto#42626)

* fixed missing dataset

* added release notes

Author: sdaniel6

Packs/CommonDashboards/ReleaseNotes/1_7_16.md

@@ -0,0 +1,10 @@
+
+#### XSIAM Dashboards
+
+##### Troubleshooting Instances
+
+- Updated the Troubleshooting Instances xsiam dashboard to use the scripts_and_commands_metrics dataset for improved metric accuracy.
+
+##### Automation Insights
+
+- Updated the Automation Insights xsiam dashboard to use the scripts_and_commands_metrics dataset for improved metric accuracy.

Packs/CommonDashboards/XSIAMDashboards/CommonDashboards_Automation_Insights.json

@@ -86,7 +86,7 @@
                                 "title": "Automated vs manual actions",
                                 "width": 33.333333333333336,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics\n| alter action_type = if(is_manual = true, \"Manual\", \"Automated\")\n| comp count() as action_count by action_type\n| sort desc action_count\n| view graph type = pie xaxis = action_type yaxis = action_count legend_percentage = `true` ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| alter action_type = if(is_manual = true, \"Manual\", \"Automated\")\n| comp count() as action_count by action_type\n| sort desc action_count\n| view graph type = pie xaxis = action_type yaxis = action_count legend_percentage = `true` ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -130,7 +130,7 @@
                                 "title": "Incidents closed over time",
                                 "width": 33.333333333333336,
                                 "height": 511,
-                                "phrase": "dataset = incidents \n| filter resolved_ts != null and resolved_ts != \"\"\n| alter resolved_time = to_timestamp(resolved_ts)\n| bin resolved_time span = 1d\n| comp count() as closed_count by resolved_time, alert_categories\n| sort asc resolved_time\n| view graph type = line xaxis = resolved_ts yaxis = closed_count series = alert_categories ",
+                                "phrase": "dataset = incidents \n| filter resolved_ts != null\n| bin resolved_ts span = 1d\n| comp count() as closed_count by resolved_ts\n| sort asc resolved_ts\n| view graph type = line xaxis = resolved_ts yaxis = closed_count",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -207,7 +207,7 @@
                                 "type": "Custom XQL",
                                 "title": "Command executions per integration category",
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics\n| filter type = \"integration\"\n| filter category != null and category != \"\"\n| comp count() as exec_count by category\n| sort desc exec_count\n| view graph type = column subtype = grouped xaxis = category yaxis = exec_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| filter type = \"integration\"\n| filter category != null and category != \"\"\n| comp count() as exec_count by category\n| sort desc exec_count\n| view graph type = column subtype = grouped xaxis = category yaxis = exec_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },

Packs/CommonDashboards/XSIAMDashboards/CommonDashboards_Troubleshooting_Instances.json

@@ -15,7 +15,7 @@
                                 "title": "Command execution errors per integration category",
                                 "width": 33.333333333333336,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics\n| filter is_error = true\n| filter type = \"integration\"\n| filter category != null and category != \"\"\n| comp count() as error_count by category\n| sort desc error_count\n| view graph type = pie xaxis = category yaxis = error_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| filter is_error = true\n| filter type = \"integration\"\n| filter category != null and category != \"\"\n| comp count() as error_count by category\n| sort desc error_count\n| view graph type = pie xaxis = category yaxis = error_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -47,7 +47,7 @@
                                 "title": "Command execution errors per instance",
                                 "width": 33.29688354291963,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics \n| filter is_error = true\n| filter type = \"integration\"\n| filter instance != null and instance != \"\"\n| comp count() as error_count by instance\n| sort desc error_count\n| view graph type = pie xaxis = instance yaxis = error_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics \n| filter is_error = true\n| filter type = \"integration\"\n| filter instance != null and instance != \"\"\n| comp count() as error_count by instance\n| sort desc error_count\n| view graph type = pie xaxis = instance yaxis = error_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -79,7 +79,7 @@
                                 "title": "Command execution errors",
                                 "width": 33.406232914160746,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics \n| filter is_error = true\n| filter name != null and name != \"\"\n| comp count() as error_count by name\n| sort desc error_count\n| view graph type = pie xaxis = name yaxis = error_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics \n| filter is_error = true\n| filter name != null and name != \"\"\n| comp count() as error_count by name\n| sort desc error_count\n| view graph type = pie xaxis = name yaxis = error_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -116,7 +116,7 @@
                                 "title": "Command execution errors",
                                 "width": 25,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics \n| filter is_error = true\n| filter type = \"integration\"\n| comp count() as error_count\n| view graph type = single subtype = standard yaxis = error_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics \n| filter is_error = true\n| filter type = \"integration\"\n| comp count() as error_count\n| view graph type = single subtype = standard yaxis = error_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -148,7 +148,7 @@
                                 "title": "Manual command execution errors",
                                 "width": 25,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics \n| filter is_error = true\n| filter is_manual = true\n| filter type = \"integration\"\n| filter name != null and name != \"\"\n| comp count() as error_count by name\n| sort desc error_count\n| limit 5\n| view graph type = line xaxis = name yaxis = error_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics \n| filter is_error = true\n| filter is_manual = true\n| filter name != null and name != \"\"\n| comp count() as error_count by name\n| sort desc error_count\n| limit 5\n| view graph type = column xaxis = name yaxis = error_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -179,7 +179,7 @@
                                 "type": "Custom XQL",
                                 "title": "Errors by issue type per command (Top 5)",
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics \n| filter is_error = true\n| filter type = \"integration\"\n| filter api_response_type != null\n| alter command = name\n| comp count() as total_errors by command, category \n| sort desc total_errors \n| limit 5\n| view graph type = column subtype = grouped xaxis = category yaxis = total_errors series = command ",
+                                "phrase": "dataset = scripts_and_commands_metrics \n| filter is_error = true\n| filter type = \"integration\"\n| filter api_response_type != null\n| alter command = name\n| comp count() as total_errors by command, category \n| sort desc total_errors \n| limit 5\n| view graph type = column subtype = grouped xaxis = category yaxis = total_errors series = command ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -225,7 +225,7 @@
                                 "title": "Failed automation executions (Top 5)",
                                 "width": 25,
                                 "height": 511,
-                                "phrase": "dataset = soar_execution_metrics\n| filter type = \"automation\"\n| filter is_error = true\n| filter name != null and name != \"\"\n| comp count() as error_count by name\n| sort desc error_count \n| limit 5\n| view graph type = column subtype = grouped xaxis = name yaxis = error_count ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| filter type = \"automation\"\n| filter is_error = true\n| filter name != null and name != \"\"\n| comp count() as error_count by name\n| sort desc error_count \n| limit 5\n| view graph type = column subtype = grouped xaxis = name yaxis = error_count ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -269,7 +269,7 @@
                                 "title": "Average runtime per command by instance (Top 5)",
                                 "width": 33.333333333333336,
                                 "height": 435,
-                                "phrase": "dataset = soar_execution_metrics\n| filter type = \"integration\"\n| filter duration != null\n| filter name != null and instance != null\n| comp avg(duration) as avg_runtime_secs by name, instance\n| sort desc avg_runtime_secs\n| limit 5\n| view graph type = column subtype = grouped xaxis = name yaxis = avg_runtime_secs series = instance ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| filter type = \"integration\"\n| filter duration != null\n| filter name != null and instance != null\n| comp avg(duration) as avg_runtime_secs by name, instance\n| sort desc avg_runtime_secs\n| limit 5\n| view graph type = column subtype = grouped xaxis = name yaxis = avg_runtime_secs series = instance ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -315,7 +315,7 @@
                                 "title": "Command average runtime per instance (Top 5)",
                                 "width": 33.333333333333336,
                                 "height": 435,
-                                "phrase": "dataset = soar_execution_metrics\n| filter type = \"integration\"\n| filter duration != null\n| filter instance != null and instance != \"\"\n| comp avg(duration) as avg_runtime_secs by instance\n| sort desc avg_runtime_secs \n| limit 5\n| view graph type = column subtype = grouped xaxis = instance yaxis = avg_runtime_secs ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| filter type = \"integration\"\n| filter duration != null\n| filter instance != null and instance != \"\"\n| comp avg(duration) as avg_runtime_secs by instance\n| sort desc avg_runtime_secs \n| limit 5\n| view graph type = column subtype = grouped xaxis = instance yaxis = avg_runtime_secs ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },
@@ -354,7 +354,7 @@
                                 "title": "Command average runtime per automation (Top 5)",
                                 "width": 33.333333333333336,
                                 "height": 435,
-                                "phrase": "dataset = soar_execution_metrics\n| filter type = \"automation\"\n| filter duration != null\n| filter name != null and name != \"\"\n| comp avg(duration) as avg_runtime_secs by name\n| sort desc avg_runtime_secs \n| limit 5\n| view graph type = column subtype = grouped xaxis = name yaxis = avg_runtime_secs ",
+                                "phrase": "dataset = scripts_and_commands_metrics\n| filter type = \"automation\"\n| filter duration != null\n| filter name != null and name != \"\"\n| comp avg(duration) as avg_runtime_secs by name\n| sort desc avg_runtime_secs \n| limit 5\n| view graph type = column subtype = grouped xaxis = name yaxis = avg_runtime_secs ",
                                 "time_frame": {
                                     "relativeTime": 604800000
                                 },

Packs/CommonDashboards/pack_metadata.json

@@ -2,7 +2,7 @@
     "name": "Common Dashboards",
     "description": "Frequently used dashboards pack.",
     "support": "xsoar",
-    "currentVersion": "1.7.15",
+    "currentVersion": "1.7.16",
     "author": "Cortex XSOAR",
     "url": "https://www.paloaltonetworks.com/cortex",
     "email": "",