Failing test: Entity Analytics - Risk Engine Integration Tests - ESS Env - Trial License.x-pack/test/security_solution_api_integration/test_suites/entity_analytics/risk_engine/trial_license_complete_tier/risk_score_preview·ts - Entity Analytics - Risk Engine @ess @serverless Risk Scoring Preview API with auditbeat data risk score ordering aggregates multiple scores such that the highest-risk scores contribute the majority of the score #183758

kibanamachine · 2024-05-17T15:46:56Z

A test failed on a tracked branch

Error: expected [ { id_field: 'host.name',
    id_value: 'host-1',
    calculated_level: 'High',
    calculated_score: 192.88436117703117,
    calculated_score_norm: 73.84546752566278,
    category_1_score: 73.84546752566278,
    category_1_count: 100 } ] to sort of equal [ { calculated_level: 'High',
    calculated_score: 225.1106801442913,
    calculated_score_norm: 86.18326192354185,
    category_1_count: 100,
    category_1_score: 86.18326192354185,
    id_field: 'host.name',
    id_value: 'host-1' } ]
    at Assertion.assert (expect.js:100:11)
    at Assertion.eql (expect.js:244:8)
    at Context.<anonymous> (risk_score_preview.ts:406:51)
    at processTicksAndRejections (node:internal/process/task_queues:95:5)
    at Object.apply (wrap_function.js:73:16) {
  actual: '[\n' +
    '  {\n' +
    '    "calculated_level": "High"\n' +
    '    "calculated_score": 192.88436117703117\n' +
    '    "calculated_score_norm": 73.84546752566278\n' +
    '    "category_1_count": 100\n' +
    '    "category_1_score": 73.84546752566278\n' +
    '    "id_field": "host.name"\n' +
    '    "id_value": "host-1"\n' +
    '  }\n' +
    ']',
  expected: '[\n' +
    '  {\n' +
    '    "calculated_level": "High"\n' +
    '    "calculated_score": 225.1106801442913\n' +
    '    "calculated_score_norm": 86.18326192354185\n' +
    '    "category_1_count": 100\n' +
    '    "category_1_score": 86.18326192354185\n' +
    '    "id_field": "host.name"\n' +
    '    "id_value": "host-1"\n' +
    '  }\n' +
    ']',
  showDiff: true
}

First failure: kibana-on-merge - main

The text was updated successfully, but these errors were encountered:

elasticmachine · 2024-05-17T15:47:15Z

Pinging @elastic/security-entity-analytics (Team:Entity Analytics)

jaredburgettelastic · 2024-05-17T16:08:18Z

We're reverting this code, and investigating why it failed on-merge

…n (with sorting fix after test failure) (#183844) ## Summary This code was originally approved and merged in #182038 It was then reverted in #183759 after a [test failure](#183758). The previous code had introduced flakiness, occasionally the inputs would be supplied to risk scoring in the wrong order causing the score to decrease. Re-adding the sorting in the reduce script has fixed this. Here is the only new code: a8cbb1c [Flaky test run](https://buildkite.com/elastic/kibana-flaky-test-suite-runner/builds/6045) 🟢 --------- Co-authored-by: oatkiller <robert.austin@elastic.co> Co-authored-by: Kibana Machine <42973632+kibanamachine@users.noreply.github.com>

kibanamachine added the failed-test A test failure on a tracked branch, potentially flaky-test label May 17, 2024

botelastic bot added the needs-team Issues missing a team label label May 17, 2024

kibanamachine added the Team:Entity Analytics Security Entity Analytics Team label May 17, 2024

botelastic bot removed the needs-team Issues missing a team label label May 17, 2024

hop-dev self-assigned this May 17, 2024

hop-dev mentioned this issue May 20, 2024

[Entity Analytics] Move risk scoring painless to static files... again (with sorting fix after test failure) #183844

Merged

hop-dev closed this as completed May 21, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

kibanamachine commented May 17, 2024

elasticmachine commented May 17, 2024

jaredburgettelastic commented May 17, 2024

Comments

kibanamachine commented May 17, 2024

elasticmachine commented May 17, 2024

jaredburgettelastic commented May 17, 2024