89 results found
-
The ability to Reduce logs in OpenSearch
As a security analyst,
I want to 'reduce' the logs searched to reduce the data to common patterns, allowing me to easily see meaningful events.
1 vote -
Add the ability to remove 'count' column in Table visualisations in OpenSearch
As a security analyst,
I want to remove the 'count' column in Table visualisation, so that the data irrelevant to what we need is not displayed.
1 voteI will raise an upstream ticket on this
-
A unified search, alarm & dashboarding experience in OpenSearch
As a security analyst,
I want to have a unified alerting, dashboarding and search experience in my SIEM, so that our capabilities are not spread across multiple plugins with differing query languages.
Currently between Dashboards/Discover, Security Analytics, Observability there is not a unified experience, it is extremely confusing and difficult to use, and to make this harder each component has a different set of upstream repositories and seemingly little co-ordination between them in features, documentation and bug fixes, making the experience very confusing and difficult.
2 votes -
Save comments in OpenSearch searches
As a security analyst,
I want to add comments into my searches within Discover, so that we have a shared history and understanding of what the intention of a search or part thereof is for.
1 vote -
Search a string as another data type in OpenSearch
As a security or data analyst,
I want to be able to treat a string as another data type at search, for example searching the string "1" as an integer upon search, so that I can search data appropriately without having to update the mapping and reindex all data.
2 votes -
OpenSearch Dashboards range pickers in Visualisations
As a security analyst,
I want to utilise 'range' in visualisations without having to Edit Query as DSL,
so that I can save time and also have people without extensive DSL knowledge create visualisations.2 votes -
Professional or Customer Support for OpenSearch Use
As a security analyst or operator,
I want to have support in using OpenSearch effectively for my use-case, so that I can have success in using this (complex, confusing, disparate) system as a SIEM without expending countless hours in trying to troubleshoot or effectively utilise the tool.
1 vote -
Keep OpenSearch Security Plugin SIGMA rules up to date.
As a security analyst and operator,
I want to utilise up-to-date SIGMA rules in the OpenSearch Security Plugin, so that I can utilise current contributions from the opensource community.
For example - at the time of writing this - the Okta rules in Security Plugin repo (main branch) have not been updated since February 2023 - with 13 rules available , while the SIGMA repo (master branch) Okta rules were last updated in December 2023 - with 21 rules available, notably including rules based on the high-profile Okta breach in 2023.
This can be observed across many rule categories, with…
2 votes -
View the underlying data of a visualisations in OpenSearch Dashboard
As an OpenSearch user
I want to view the data underneath the visualisation
so that I can quickly identify root cause of some abnormal behaviour of my system2 votes -
Inability to extract fields upon search
As a database admin
I want to define field patterns at search
so that I can effectively work with new field pattern3 votes -
Internal data table/lookup functionality
As a database admin
I want to have queries run upon a schedule and populate internal data tables
so that I can enrich the search and alerting functionality3 votes -
Support table engine MaterializedPostgreSQL in ClickHouse
As a user of both PostgreSQL (on-prem, on another cloud provider or at Aiven) and Aiven for ClickHouse,
I want to be able to ingest my PostgreSQL data, not as a on time snapshot or a remote view of the data like the current integrations allow me to, but as tables created and stored in ClickHouse that pull updates from PostgreSQL regularly.2 votes -
Option for ClickHouse Tiered Storage to use my own object storage
As a user of Aiven for ClickHouse on AWS, Microsoft Azure or Google Cloud:
I would like to leverage my own object storage account with Tiered Storage for Aiven for ClickHouse (that I am already using BYOC on).4 votes -
filter by backend cluster setting
As an application developer
I want to add an advanced configuration for cluster setting 'plugins.alerting.filterbybackend_roles'
so that I can prevent users from different tenants from seeing each other's monitorsCurrently unable to implement the following due to the current limitation: https://opensearch.org/docs/latest/observing-your-data/alerting/security/
1 voteThis is currently an advanced configuration for Security Plugin on OpenSearch upstream, we are evaluating this idea will comeback to this later on this quarter. This idea is valid and put it in Gathering Interest state now in a meantime
-
Option for ClickHouse Tiered Storage to use my OCI object storage
As a user of Aiven for ClickHouse,
I want to be able to choose between Aiven's object storage (the default) and my own Oracle - OCI object storage.1 vote -
Allow changing of OpenSearch configurable limits
As a customer
I want to change the configurable limits in OpenSearch
so that I can change things like https://opensearch.org/docs/latest/install-and-configure/configuring-opensearch/circuit-breaker/ when doing one-off large operations like deleting a bulk amount of data1 vote -
Show more system.tables of my Aiven for ClickHouse service
As a user of Aiven for ClickHouse,
I want to be able to see more system.tables in order to know more about my service at any given time (either in the console or not).The tables I want to have access to are to be defined.
0 votes -
Better insights about the replication queue of my Aiven for ClickHouse service
As a user of Aiven for ClickHouse,
I want to be able to know more about the replication queue, its state and items such as (but not limited to) retried items, TTLDelete, item types...0 votes -
Better zookeeper insights in Aiven for ClickHouse
As a user of Aiven for ClickHouse,
I want to be able to know more about Zookeeper, its current state and what it is doing at any given time (in the console or in Grafana).1 vote -
View in-progress and completed mutations in my Aiven for ClickHouse services directly in the Aiven console
As a user of at least one Aiven for ClickHouse service,
I want to be able to easily view in the Aiven console, in my ClickHouse service, the list of mutations (both in-progress and completed) and relevant information about them such as creation time, ID of the mutation, what table and databases the mutation is applied on, if it is done or in progress etc.
At the moment, this information can be found in system.mutations table and system.replication_queue for replicated tables, but it is a manual process to check them.
1 vote
- Don't see your idea?