misp-taxonomies/misp-workflow/machinetag.json

{
  "namespace": "misp-workflow",
  "expanded": "MISP workflow",
  "description": "MISP workflow taxonomy to support result of workflow execution.",
  "version": 3,
  "predicates": [
    {
      "value": "action-taken",
      "expanded": "Action taken",
      "description": "Action taken during the workflow execution"
    },
    {
      "value": "analysis",
      "expanded": "Analysis",
      "description": "Result of the analysis executed during the workflow execution"
    },
    {
      "value": "mutability",
      "expanded": "Mutability",
      "description": "Describe if the workflow is allowed to modify data"
    },
    {
      "value": "run",
      "expanded": "Run",
      "description": "Describe if the workflow is allowed to run on the data being passed"
    }
  ],
  "values": [
    {
      "predicate": "action-taken",
      "entry": [
        {
          "value": "ids-flag-removed",
          "expanded": "IDS flag removed"
        },
        {
          "value": "ids-flag-added",
          "expanded": "IDS flag added"
        },
        {
          "value": "pushed-to-zmq",
          "expanded": "Pushed to ZMQ"
        },
        {
          "value": "email-sent",
          "expanded": "Email sent"
        },
        {
          "value": "webhook-triggered",
          "expanded": "Webhook triggered"
        },
        {
          "value": "execution-stopped",
          "expanded": "Execution stopped"
        }
      ]
    },
    {
      "predicate": "analysis",
      "entry": [
        {
          "value": "false-positive",
          "expanded": "False positive"
        },
        {
          "value": "highly-likely-positive",
          "expanded": "Highly Likely Positive"
        },
        {
          "value": "known-file-hash",
          "expanded": "Known file hash"
        }
      ]
    },
    {
      "predicate": "mutability",
      "entry": [
        {
          "value": "allowed",
          "expanded": "Allowed"
        }
      ]
    },
    {
      "predicate": "run",
      "entry": [
        {
          "value": "allowed",
          "expanded": "Allowed"
        }
      ]
    }
  ]
}
new: [misp-workflow] new misp-workflow taxonomy to have a consistent tag message for the MISP workflow 2022-11-01 15:44:44 +01:00			`{`
			`"namespace": "misp-workflow",`
			`"expanded": "MISP workflow",`
			`"description": "MISP workflow taxonomy to support result of workflow execution.",`
fix: [misp-workflow] Bumped version 2023-07-28 10:06:57 +02:00			`"version": 3,`
new: [misp-workflow] new misp-workflow taxonomy to have a consistent tag message for the MISP workflow 2022-11-01 15:44:44 +01:00			`"predicates": [`
			`{`
chg: [misp-workflow] move to action-taken predicate 2022-11-01 22:22:32 +01:00			`"value": "action-taken",`
			`"expanded": "Action taken",`
			`"description": "Action taken during the workflow execution"`
chg: [misp-workflow] Added more entries related to curation 2023-07-28 10:05:05 +02:00			`},`
			`{`
			`"value": "analysis",`
			`"expanded": "Analysis",`
			`"description": "Result of the analysis executed during the workflow execution"`
			`},`
			`{`
			`"value": "mutability",`
			`"expanded": "Mutability",`
			`"description": "Describe if the workflow is allowed to modify data"`
			`},`
			`{`
			`"value": "run",`
			`"expanded": "Run",`
			`"description": "Describe if the workflow is allowed to run on the data being passed"`
new: [misp-workflow] new misp-workflow taxonomy to have a consistent tag message for the MISP workflow 2022-11-01 15:44:44 +01:00			`}`
			`],`
			`"values": [`
			`{`
chg: [misp-workflow] move to action-taken predicate 2022-11-01 22:22:32 +01:00			`"predicate": "action-taken",`
new: [misp-workflow] new misp-workflow taxonomy to have a consistent tag message for the MISP workflow 2022-11-01 15:44:44 +01:00			`"entry": [`
			`{`
			`"value": "ids-flag-removed",`
			`"expanded": "IDS flag removed"`
			`},`
			`{`
			`"value": "ids-flag-added",`
			`"expanded": "IDS flag added"`
			`},`
			`{`
			`"value": "pushed-to-zmq",`
			`"expanded": "Pushed to ZMQ"`
			`},`
			`{`
			`"value": "email-sent",`
			`"expanded": "Email sent"`
			`},`
			`{`
			`"value": "webhook-triggered",`
			`"expanded": "Webhook triggered"`
			`},`
			`{`
			`"value": "execution-stopped",`
			`"expanded": "Execution stopped"`
			`}`
			`]`
chg: [misp-workflow] Added more entries related to curation 2023-07-28 10:05:05 +02:00			`},`
			`{`
			`"predicate": "analysis",`
			`"entry": [`
			`{`
			`"value": "false-positive",`
			`"expanded": "False positive"`
			`},`
			`{`
			`"value": "highly-likely-positive",`
			`"expanded": "Highly Likely Positive"`
			`},`
			`{`
			`"value": "known-file-hash",`
			`"expanded": "Known file hash"`
			`}`
			`]`
			`},`
			`{`
			`"predicate": "mutability",`
			`"entry": [`
			`{`
			`"value": "allowed",`
			`"expanded": "Allowed"`
			`}`
			`]`
			`},`
			`{`
			`"predicate": "run",`
			`"entry": [`
			`{`
			`"value": "allowed",`
			`"expanded": "Allowed"`
			`}`
			`]`
new: [misp-workflow] new misp-workflow taxonomy to have a consistent tag message for the MISP workflow 2022-11-01 15:44:44 +01:00			`}`
			`]`
			`}`