Contents x
      CDC engine 2.3.0
      • 02 Apr 2025
      • 1 Minute to read
      • Dark
        Light
      • PDF
      Contents

      CDC engine 2.3.0

      • Updated on 02 Apr 2025
      • 1 Minute to read
      • Dark
        Light
      • PDF
      Article summary

      CDC engine - 2.3.0

      tags: python | infrastructure | cdc

      Table of Contents

      Description

      CDC_engine is a generic pack prepared for the implementation of a higher level of automations and integration with the CDC. It uses different API frameworks supported by the CDC, such as cdc_sdk and APIs such as cdc_backend, cdc_async, cdc_public, etc.

      CyberProof can use this pack for any implementation that is not directly part of cdc_sdk or async, but still related to StackStorm. All common functionality that is independent of the API and used for communication with CDC is usually placed in this pack. Copying observable tags in alert tags is also supported using this pack, and available for all CDC APIs.

      Integration Type:Integration
      Information read:Alerts read from CDC using webhooks.
      API Supported:Rest APIs
      Input:Rule ( no input required)
      Output:Processed Rules and workflows.

      CDC Command Lines

      No CDC command lines

      Workflows

      • add_observable_tags_to_alert
        Copies observable tags to the alert tag.

      • handle_new_alert
        Handles a new alert that was created in the CDC.

      • inject_alert
        This workflow will inject an alert to the CDC.

      • post_card_message
        This workflow will send message data in adaptive card to alert , incident , channel

      • post_message
        This workflow will send message to cdc alert incident and channel level

      • post_thread_card_message
        This workflow will send message data in adaptive card to thread of alert channel or incident eg cli output

      • post_thread_message
        This workflow will send message to thread of alert channel or incident eg cli output

      Rules

      • cdc_add_observable_tags_to_alert
        This rule is for getting an alert_created webhook event from the CDC. It triggers an action for adding the tags from the observable to the alert.

      • inject_alert_listener
        Triggers injecting new alerts to the CDC workflow, when a sensor dispatches a new alert to the CDC.

      • new_alert_listener
        Triggered when a new alert in the CDC is created.

      Sensors

      No sensors

      Triggers

      • cdc_new_alert
        Trigger that indicates that a new alert has been created, that needs to be injected to the CDC.

      Known Issues

      Was this article helpful?
      What's Next