Splunk Content Control Tool
Geek Repo:Geek Repo
Github PK Tool:Github PK Tool
pyth0n1c opened this issue 2 years ago · comments
When generating new content with: python3 contentctl.py -p . new_content -t detection and choosing SSA instead of ESCU, the generated detection .yml field is missing the search field.
python3 contentctl.py -p . new_content -t detection
