New and Noteworthy

• panther-analysis version 3.32.0 was released, featuring four new detections for Notion, improvements to existing Notion detections, and other enhancements. 

• Added the permission, invitee, and inviter fields to the GitHub.Audit schema.

• Now generally available: use the new Summary tab on search results to quickly understand what is and is not important when triaging an alert, investigating a potential breach, or threat hunting.

  • New for this release: create inclusive and exclusive filters from the summary chart.

Enhancements

• Updated search results filter chips that support arrays to work better with filter in / filter out functionality.

Panther Developer Workflows

• panther_analysis_tool version 0.36.0 was released, containing the following improvements:

  • When running PAT tests on derived detections, if base detections are not found locally, unit tests can now be fetched remotely.

  • Other improvements and fixes.