Thanks to visit codestin.com
Credit goes to github.com

Skip to content

Add db export malware warning #10490

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 5 commits into
base: 2.5
Choose a base branch
from
Open

Add db export malware warning #10490

wants to merge 5 commits into from
+4 −1

Conversation

@musharafmaqbool
Copy link

What does it do?

Adds a warning message to the database export functionality to inform users that malware samples are not included in database exports since they are stored on the filesystem rather than in the database.

Changes:

  • Added warning message to inform users about malware sample exclusion
  • Warning appears when users access the export function
  • Helps set proper expectations about export contents

Fixes: #3101

Testing

  • Warning message appears when accessing DB export
  • Message clearly explains malware samples are not included
  • Export functionality still works normally

Questions

  • Does it require a DB change? No
  • Are you using it in production? This is a user-facing warning improvement
  • Does it require a change in the API (PyMISP for example)? No

@musharafmaqbool
Fix duplicate email rules in NIDS export
11e2f12 
- Remove duplicate emailDstRule call for generic 'email' case
- Prevents duplicate entries in NIDS export output
- Generic email attributes now default to source rules only
- Users can still use 'email-dst' for destination-specific rules
- Fixes issue MISP#6565
@musharafmaqbool
Merge pull request #1 from musharafmaqbool/fix-nids-email-duplicates-…
50582ed 
…6565

Fix duplicate email rules in NIDS export
@musharafmaqbool
Add warning about malware samples not included in DB export (fixes MI…
e1eb9e6 
…SP#3101)

Added warning message to inform users that malware samples are not included 
in database exports since they are stored on the filesystem rather than 
in the database. This addresses issue MISP#3101.
@musharafmaqbool
Merge pull request #2 from musharafmaqbool/musharafmaqbool-patch-1
8c9fdaa 
This PR adds a warning message to the database export functionality to inform users that malware samples are not included in database exports since they are stored on the filesystem rather than in the database.

The warning message appears when users access the export function and helps set proper expectations about what will be included in the export.

Fixes MISP#3101
@musharafmaqbool
Revert NIDS changes to focus on DB malware warning only
0f951a0 
Reverted NIDS email duplicate fix changes to keep this branch focused only on the database export malware warning feature. The NIDS fix will be implemented in a separate PR.
@musharafmaqbool
Copy link
Author

musharafmaqbool commented Sep 5, 2025
edited
Loading

Hi @adulau,

Thank you for the feedback. You're absolutely right - I understand now that each fix should be in its own separate branch with its own PR.

I've just created separate branches for each fix:

  1. DB Export Malware Warning - This branch only contains the warning message for database exports
  2. NIDS Email Duplicate Fix - I'm creating this as a separate branch that only addresses the duplicate email rules issue

I apologize for initially combining both changes in one PR. I'll make sure to follow the one-fix-per-PR approach going forward. Each branch now focuses on solving one specific issue with its own commit history.

Thank you for your patience and guidance on the proper contribution process.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@musharafmaqbool