From de15308240c95f589606dbefc6a89e2fbe2b1785 Mon Sep 17 00:00:00 2001
From: v-sabiraj <v-sabiraj@microsoft.com>
Date: Tue, 12 Nov 2024 14:27:01 +0530
Subject: [PATCH] Updated data type query for GCP SCC data connector

---
 .../GCPSecurityCommandCenter.json                |   2 +-
 .../Package/3.0.6.zip                            | Bin 0 -> 6300 bytes
 .../Package/mainTemplate.json                    |   6 +++---
 .../ReleaseNotes.md                              |   9 +++++----
 4 files changed, 9 insertions(+), 8 deletions(-)
 create mode 100644 Solutions/Google Cloud Platform Security Command Center/Package/3.0.6.zip

diff --git a/Solutions/Google Cloud Platform Security Command Center/Data Connectors/GCPSecurityCommandCenter.json b/Solutions/Google Cloud Platform Security Command Center/Data Connectors/GCPSecurityCommandCenter.json
index ce311ecc984..022557d7302 100644
--- a/Solutions/Google Cloud Platform Security Command Center/Data Connectors/GCPSecurityCommandCenter.json	
+++ b/Solutions/Google Cloud Platform Security Command Center/Data Connectors/GCPSecurityCommandCenter.json	
@@ -20,7 +20,7 @@
 "dataTypes": [
 	{
 		"name": "{{graphQueriesTableName}}",
-		"lastDataReceivedQuery": "{{graphQueriesTableName}}\n            | where TimeGenerated > ago(12h) | where name_s == \"no data test\"               | summarize Time = max(TimeGenerated)\n            | where isnotempty(Time)"
+		"lastDataReceivedQuery": "{{graphQueriesTableName}}\n            | where TimeGenerated > ago(12h)      | summarize Time = max(TimeGenerated)\n            | where isnotempty(Time)"
 	}
 ],
 "connectivityCriteria": [
diff --git a/Solutions/Google Cloud Platform Security Command Center/Package/3.0.6.zip b/Solutions/Google Cloud Platform Security Command Center/Package/3.0.6.zip
new file mode 100644
index 0000000000000000000000000000000000000000..5db960f74572378d4105b62d5bd0905e01de708f
GIT binary patch
literal 6300
zcmbW5RZtwvmVnVf&<ySbcL?t84CDs}cLEIV65Ks_kPs}$-~<nDGq_7|2@V5ca8F>9
zt=+x%VPAI7>1ug6b-Jq`zN$|Xh>Avpg!v~0+?@=O{ww+cNJykeuaT@gY%INObnO*v
z!1gZoUiPjo+zy_uF1k9nNEqrw{I(4w{I)*b__p4@*ht7|e~bTfYSuq?*-;>R>Y43^
zr6My`5R}zK$`G6Ctmqn6VCx$DM6F<H{EU;d{>jU~W8DE{%8ydsQN05@vG{P?koFfe
z<%>#XodzCk<4+X;&<k={_sFr6SXFAc#%Fv@@*>H{459q_t0`SPg7^#>^Y6i(v^0@1
z#d4Qzn;*_A_Qx*@%<|4FhNFnt@y)Yl<An|Hs<iHH`=(db3~7L0^J*69XGhB`aR2E<
zWJVkLPBw?pv#jyznUktFCKzMNLSw>VDtn;RYCJc_apUuRI9Uvc8JCvZm3cgNxGBn=
z%#+YwYiZ>|m>xKM7@HJ;EB2WSs<70Qn;z|G(1b@9lbBrcKyA9CxoeVyOp;4wUapYs
zUZg{R&qIJ;n9U+-6uVS9)K%NfxpB?9N3ZJq`)ZrJXYBSSSTmFM<YWf2JMK0cI4WqU
zD6}V_t6dp2O!)b%Vm4R7h4bTVUTZ+HH5^5hzU;VG`l*B?+2SD0rPdd+n$36nn|YFb
za6Qa$!jEv>yJkFLDk##N3Q?e@J9rnsmL26u{?xUvRS^~B*20e3wf39sN>=_P@|JFV
zJM8jP?wBx}vNd^tOp2HI*gQRprTVf@#ze0kzfiNIhTR}gABxJ}`VHr&*QUs?$il%B
zI^vu&a87yjB!`HCZu+iO3A5Z$L4g@wd0g5NSw;M-w}cE|UQ(1v2)|3B5-57Bj?G`J
zJJAO*;tCdf5p%}6)hk(Ap+_!A4ks_4@}x0@$ot!<Y5)=o+1RnO`K?D;nO+DdY>}w#
z`)a{Q{W;Z3G(GU;KWFhBeAb9`GHI-+dK<6hq7}6`YN-<dl}P<X9+<3njY9_F#`f1_
zVv^ZFhGQo6v_dPGA%vO55_uA9r<(x&u~@^gB65jE5Xt!~C!_@50+x0@sHaeB>;!q3
z9^<kVI6Ir%7ZnGYkb64oT`#!P0Y9{G+$IZ^5l!&mg05N(F-|V!oFee`0dH;M1l?Aw
zcH<qPu91;Yy$zm_2wdD&ejNGt+Z?0Jfy=8gpxzKW1sY6mif^xEy~*eVCrcBlgdw<M
z-lSi*qth9v*+Kq{i6mLKf1MV$1KImFZ_2}WU#Zqe&Xb;>jpE0@Q&cYnCPTWZRG7@4
zUeMyza=1x<V^kH}xl431jpp3<I1jU;<g1|nM$DZ+wEw9kc&juk)(TMuy@k5RQ839H
zxv80`E?3f<hA1XuEPe{CBjam|EZSMOVkx)aPC&}eQEi4@GZ!8hWeh|=k0(ZEokk+t
zuDxz*cj9n(s(H32ss(SQQJfThvYKsg1?&urtlF?T*Z!36>+lRxJw8*gWr>neG_0|{
z<$~-cx@n<xH<Zb>$G!a+L;UWAThYB6DWTerhyYzH85*=J+&H5>cV%IJOU}=t!8v!o
z<!+g#2y<@4U*BL9esFuUM!SY#S{?#BtXow{V{g$yJK%9`AMZDN2XY16$R-DOh*+xh
z!_2BEq`rlA+eDGgQ_h@kJ#9VNJs;0J$>QU=jv>w}IJu?x!d!waQ^n^hMPO7XDnOyF
z**I5QRIq+Oh-t@Rx#Q-(?{3x7KM|dmbI@gyCo-MUbVHZhINgpH8c5HSFi)nq;KV~k
z(_=}%cKdSNV5SyxxpuVp$1#bF>#NDUyA+2uWa=I_{-qQ0QrCHOfuje!Y+9TO(bdr&
zWV8q9#rSbwxT9|mSnCvK8g*~#=0$o{haxlHBUrLw`lb`RlV#PFHb66|XAm^xT<F)i
z%&-z$W29|d&b$&dCt3G_=y^%PMBfy_0v69%P;ynaqc<FPjlABFV2k_S(bmihU!Z*O
znZi@b>}jOD1ltC!$vlWBgf9<rRF;?S53;%+<t9d-X;eAsY3z`nkbZ%fQ#x)soUYZo
zM_=)07RBxb3kA(q5oHX%OKGFqUzbU}k8<|hG1RqDVFC3Vx;$f%YhQcowGUuqR!-Cy
z^)JdPKAH!uGD2bvY1$-nD<Rg`C)?d%=of6n4&vpbI~rNv_43xU29mAys$vI~klw(G
zD#nMHY6p7CvDC%z&TrC3^@7_l2YAP0_2u#2MU}k?2d(HtvC?Jx_E1@`ndI83195B-
zYsblZ!4##MX3o|;EN7=@b05n$)z7qI=dacQ;s%$|u8_q0fzb=2u^Z=>xWYM)h_}`g
z@;wX<6iIKvADY1n0qW<McfXc@XaX@X%XatUonIg!{pFVC{}9d2<6lIRPeVci{2`jN
zrM-)ejkBB6AFln2WeI;cR{g)T?1b9Ubw}tTAnXYPD%tyTQ#tJh%PUOWWO8}z#RQ`C
zxaouZ<S;vdb7QKaZb`1j+^<_o?IO;RG!1Q^T%R5EhB#Hc7?_{C2!mwcZ{qNOj$Oy|
zwzKE_ql`e4@;8+~{^^EK<o0H7lH>VK-Ag99O+gx)60ei-@Inr00v9Dkeg=qK!MhIM
z$JrL1x~)BC%xvc9vE)G^$T17%ZvB|J{pvAYsOLP#0I^hl7?qfeV|=#LS;g_0wI;%G
zx&Kt2(}I^K)uKqoW`ds}cgF%+HhoaHcDPkf`1p%-D48jt3X`8gnOiE+jtX&d`@OT+
zruCC}J}l2BL3?;SQRUP2n!mDWJo$~-A@e?K?-Gn=n<xs;YB&yTI_U}+N+|y40G__S
zl|I<L7*)6)vV)*xxiG<kNnO8shy}bP8%kpNLN7INI7gl6VtClvT9xt?i74&Qqlc!%
zF!05&4FU2-5C=o7l+*0n&#iZtye&ry7ijw(TFk!k4Q9wdWcGj)d|wpvm+{Odv1Hd)
zGuRc>Hsz~|IM{eQB83q~F9J`j^nWcNI7QrQYgSet9~m?#>hGA7H(_GIm(+u|28V=q
z*_2qh%AxuzL89J6DLa3jR6qj2H+Z2;*2UzaKu+x`fELGue1lHPJHDg&kpNxQA46cC
zPTBAm3R%nEbrsu;!gySN0%dWZ9CV>JsH5sv`5RRdky3zI8KD=I$de=sw`0@pu72~y
z!dhIc=gv+8-c<QH9n*cb{?Zk{Ypo;*^J*hTByINK&K8;BBb)7SC*taLSwGbYnXEmC
zcMXy3Xm|}sjYUccwP28@dNz>(dO8z2**orMhcq^*B^a5z{y<W_a68|XWF-YjJxm8Q
zE&--H(F6SVnZGa-6gU>VwJR(L&w8awVU~$deHYzvH1+jpC9jpv(-di-{jEynIWR8Y
zdDbjoW|kYk!;DIiFtR%?Zj$06LYBM9`!aU721*5ax>xnk*fT^UmA67-|D?p0+Sua>
zf_O<!Q{(j1AIUC8X+`vNiC#J|HycJ@grY6ZhiN$L<I=ugF`YX3Chjg1{K35l?Z)HN
zVJ)(C5hoGH5PQ4LY7NOpS7F08l-7CT52~5^?9nEr@dAd)M1cl6T1&o>dD+?k*y1Vo
z)JB(7k5tg})77u*>&;)kr&t#EcwY(yABhIW{?;kTC}m?C8mA8Xs*i2w?ecv!<KYbh
z&2bDMkMQimK>E62UaF3147rl7Y%~cksau2U&V_7CwC_C-H9Vc$@wT={M&Et`M}K;$
ztxEtv5^5seWM-=4|5kLU*;}_Q0Re?m>iX8w;Yr*`vAUQo1V>4u!qMfh30ty+UE5dN
zpq*j*t>L5aeRD>kXyUlwyu~XZ_epuDkp-Jf+Q$aEDX~^Hv@xSu1z|2N(Lw>_vZXeC
z0zchmtQiAgDa8|I0+rpj7kAYZZU8MFpZPTHU{daj2BA^H#t1yI!&3~osAh5JDd#bB
z&7zU$ktHGnE=<v;P&<?XGY3XIy|hMidA$p{EVcG=DuQyqswhRD)!+n3QmrS}^C)<)
zc;)3NUCxn9vNsGEgASV!Txj~`SMHi-A!NPj)YWLT4aVfo{#lIZ!{<=HAqai(q+rQ}
z-MPFXnnS+I<knKbP1~O^M}BXr>3{OYTgb^iv`X*6^9X*N_|a;lfv#Gbr#iC#<?Use
zZldRrny+Qx4&e*sUn`#Q(XBQMs4+|X^<m!H_c1o5sGTcx))L-Cu-&PbTfKQqGbWn|
zCK1(}Q=L|zXTql=_IAa{^`a;xg+de#D9QaxaZDV{Tp}F{5IWZij?Lqeye-wtIhhE4
zVm)j?l%jqqj~-*%0>=}HFD6Vt4UDk}gLqP{M<mAnMk?8jzQYofii$u{rg3ZVdK4Fp
zl;vbrmCy>tXboVz&jASx1ji!m6PPX770&cjsD9yVoH<9@3Am$JII!VXtKidx4R2B9
ziuFoRMC@Ko?-31S?wm6MtRhiIygUd1hJ&dk<nNcbP@N)cQs``7S>O*3GTNykMS}&P
zn5d~1TAn|D+%_4ag7M3w2SiW+9YmN!JDj>@T+Y5#8UFW|Uw-ILqOGvff0esU^B7V#
zcoY65^Mhim3F$FTX)=q*nGj1W`6gwIrEEq3^5a%v+EH>cS5SGfzo~Nj;~<rr^4Uix
z6SgKlECPx2#)wZG*A~4V<ZC|`W^Y4~A5hVbNQz+*)U!tDg5T6__lV~kbLxFX60rYy
zl4m!UhHFaP-ZS8W%+tuF2IK^>^KSmxRX^O=n(>leOdWXb3b>bqCp;nF>|UB#t_2G^
zK~YBgTJ~=n9-r`TMVl?H@vy9sjL>3toZgRR<lGHfMiG+oZyfpg*8=*xd&IHCJY()E
zelNV=-PIiI)3+eb8stz0_@w&p)=n>-lP^#{mY)o7*(s3$87i5NwUi+rzSj#|F`n~U
zGmAR5e$sgSX*udRqJRy}Wvnj-{>uJfFCA;_Vd*c81(0h?8b<a@K6B-bt6OZ$5i<Ru
z%4?Qks$+<Z{>;CIMAqDZZJf_0>ltYUD<*r-DZ3VjYljJgNx9(kyMqq;WE3t7lpE=i
z^A6bTf`rgto(1>c8mG2(mh`nTWaF$uoi1LpG-&df#23YWjTRYkI4`ICz;EG`bWu-;
zKH@jfR>(UQ_9{g=fW7VogQ2T?9_O|_Uqj}vpObbny>-{~%MJK36QS=<H{BFYmxQmP
zVWKr1u{y76vBgTTJ%74tYZ=Tvi5_FJ>1t#sFucyrv_oS85y~w(nF9~s(>gCzy=t@8
z;?x)46<NDzqZg*+zm?+zkAo+RzOcvIjFEf$#Sezgo^{F`QQm!l(NIABgz!F=Ps2A+
zwk+P#Qw*z+Q5ik~tpq-hD}!wF4~KcLgRtTq={tBX)+GQ{197K2qpXaqQuwXe(fuc1
z<hHZ4hwXEw1EkQY@z^;w>4O2<NBY49M}nf*u$f#;8$`Rn3$Ihmg3O6tw9Kq`XtqrP
zggnW>f2uDClv5dY^x<eY)aJQ1cKOsjQP0##CV->}rE{Ba9(A+_jIG3tT$_w%o-f{^
z3=as;zM%rbUWfST;?z$uBs}tq)NhxYOW<6GP5#F5FyGrUvBfk2Hd$~zc4bm~N*I;r
zOwM7?hDP6R*99ZiEJAK)cYy*50{9qsXFrxlIJ|N<gi1NZnMKqLV%}t@a=?1&=_v>4
zX*fjf`vlco2%hE7_`TdmJ(e3y+xz|11D_dEUykbESTL4buiKi9(M*<)XzL6gqBIR;
zFUGRdScW%BI9_r{g%I%ici$YA$7pxOpaf!UzrM_q!BAt;m;++4;lui5jt=&yX7N0N
zwl~yf#BMt28B<?P4JgLHiqJ`Bkz!LRPU%y)(jG~_3)*M(LdpFEcu6i+V)rya%>C*?
zfPN#IY;UUZP`2TewC+UQq+>Z{2C<zViOc?O=w}UV9iB2-7kp@i3+DK&?><V%WL<ug
z68@;C_GF);Y#isWTRFHz2yw6$M5g@bLny9+^}~t8SUoorq;Jw;5A4Ld<8EJRy#9Rv
zl6vX9=T8h){kHmAyj1g2E9<1JfS%BxG+GY@)K62oBbbXxEx+WU!#f<YRY@W$MhT4^
zuvB5#KqGdmrw`pqKbF#y>*J3ZW-yHJ?ZKimjEH1iU1KUhYl(^+LrZ>V=L^z#OVIDW
z>ENg*Iv$iZX6o6M@?9q(fhUA(zU0J9%|AnweZ$ms3*~vaLj$;K%n7nzz2l8Z1ib~`
zh$qi|ZBSM8hYsd3;q!~!imm+=Le~=+IpS@pdU?do>*)lV8Bh`+R&Ia#b(lnrP$Fp-
z5U$$|3G}y>@oRJ<(6Ru#uh+jSaIvw>o*ZH<(FdD>ye5Q=ZuuO8T2c{8JYG}Bz1VCo
z)zGC+f}iB%av3kNSbi{1eTk~P_Be%z`HEV*gN>_bh~sT~2R_>d1c26c>N#{hzN=Mb
zhj5Bdb3813FG@eIK340{X4L?~^4~+UM*KXmuhlD+*0<|Q55?05fRNAk5u<<!{A$H7
zg2`5_i%U{1m9#tT1!d(&_C|bFpyp!TKVOkyWga!xbTn8ux(})RGnDG(VC)nTmD%3P
z!?-#FPSseYe)GUQPmr>51be1;<eFy2=zgWPx_zOcO%dhCy07$p;gzXnY^1#FNS7DM
z7!xT8?tU>~(HJ<^^%(!vD6iKTkHhgu^B4!`C|lFl<!?IN=L&lOO179fb!V5%Q75ep
z3(%y6ZnuTW*E;UIwPoC5icHGRbW*$N9}T${WqjbYkFL6S7FkcOpAoJh1N?kVYGC;N
zaW2y3Rlxf1W)0h>x8{MW1tF>hS+t2`$a%)EK}s!ZAuR_t(u)285netySKh@PT#r{?
z9bQ+|^?Qh`Q*$BHKxJ|JPYCDy?M|i=uGwZTH}iFyrZ$nNATe+I(z32>|L`l@9j^oD
z65-k&=?A{Ktd{#wy_2imlM;qn4QZE8E^Dk^1}u54eA(|z+w1iF-I#Wp;XOX^?o4>s
z1H5wq-jSg*4V;=+A2NMExnb0Pk~!yiGG~vg9alZRo%N)7WsT|$3QF7H!Iurm$Covy
zOUMbn^Gl@CPjtEoJS~?MGZ9RS_H(ZYCEJBT<Sx)97XuQBr<2fQtu_=DLI&*dAc*zL
zx(jb5;QD2)^P@}D2;9!{jyr#S)2_pSX2t5BHxau4Vrl7J;UsSmz!|N2cP|nr)$>-e
z<3P3El6%|qw@1AO{X-2?5#qv6iE#O1weRS)w*ct`r;n}kL5AyV<0CV**h=FW2bIhy
zP}N4iUYH%c#!Jv_csTtbvo*k_<dOBkNy(q#`-Tx35IDawIJ%9-Tc%#_)ySOQ?48gz
z%GbQixev`}`l?Irk7oL6<a!xzNB!NlecF)DQs&)H_TKkpZ+>iy`X_zPIPA78CZX=i
z3U|J0ZPP@_uFc8Vw05QCphj)LHPmnFNx657x^%D?DmlLNzg4+3;HmHrGh!O$NpAJs
zCgW{f8mf_+4nNd)sKsW1hb}qnJ&b+i^oqT@VEoWC`H}P6Hk<uwTh*TLbOS_)y@SIS
z@a=R?Ok!o=vB~F#giA!;bt7`2;JxMQW$U8X_xYt4EJaT0=ft&9x3sog%<<ozsB}ym
zq8$Tz^d$#<CgbJP5Z@t%#fg&7%(w094G@wa$1ZhsLd*fi<ZbL)#bQvKhCNHRPpuNN
zbZd4f4=%cBZhrX>p_Tz5Ryk}0Rd4utn=H9$On_AU2eBC_LD5qs<(pvyGLqqOQ$Dnh
zp!KT@vS^;mZFrk>sBB(sd~g0w8gtVVsezind#EpL5k44);pkd&FoE`{ryTR?(jchB
zQc}5A<7T$c(8no#0pf>P)LC8`G0Ol^kIlT8gWHDIWS{z#g<lKjVk<$wX^-E<g5PV0
z(DtO}@>a!kyNJ^|ffneV?GF(Ns{MD07p)l|8HE`V<wJf*K73s%VyD#Zk>5`fs{HO1
zIvuH0bw656-(sC8ygEvgJEKv6UfgXbSZvNFuQFunv>or%KVsG0oLsih@^hZ+T9Jbb
zT+_24V8apMH68cji@*N?V(G_O_V+;(sx5ZUt~D%LS?6yZh&H2<+FsXW^N{P1zrF)z
zN+q583JK}2)zAbYqY$C~%i;gK3;FBt|2w{g{oVaPjsCwk`Kwj_{Q`fr%74eVu-QKv
Z=Km~NG=b=U%8-yy{$&536-xT|^dCnr{aOG3

literal 0
HcmV?d00001

diff --git a/Solutions/Google Cloud Platform Security Command Center/Package/mainTemplate.json b/Solutions/Google Cloud Platform Security Command Center/Package/mainTemplate.json
index a40b7983517..46a068e82be 100644
--- a/Solutions/Google Cloud Platform Security Command Center/Package/mainTemplate.json	
+++ b/Solutions/Google Cloud Platform Security Command Center/Package/mainTemplate.json	
@@ -42,7 +42,7 @@
     "variables": {
         "workspaceResourceId": "[resourceId('microsoft.OperationalInsights/Workspaces', parameters('workspace'))]",
         "_solutionName": "Google Cloud Security Command Center",
-        "_solutionVersion": "3.0.5",
+        "_solutionVersion": "3.0.6",
         "_solutionAuthor": "Microsoft",
         "_packageIcon": "google_logo",
         "solutionId": "azuresentinel.azure-sentinel-solution-gcpscclogs-api",
@@ -113,7 +113,7 @@
                                     "dataTypes": [
                                         {
                                             "name": "{{graphQueriesTableName}}",
-                                            "lastDataReceivedQuery": "{{graphQueriesTableName}}\n            | where TimeGenerated > ago(12h) | where name_s == \"no data test\"               | summarize Time = max(TimeGenerated)\n            | where isnotempty(Time)"
+                                            "lastDataReceivedQuery": "{{graphQueriesTableName}}\n            | where TimeGenerated > ago(12h)         | summarize Time = max(TimeGenerated)\n            | where isnotempty(Time)"
                                         }
                                     ],
                                     "connectivityCriteria": [
@@ -297,7 +297,7 @@
                     "dataTypes": [
                         {
                             "name": "{{graphQueriesTableName}}",
-                            "lastDataReceivedQuery": "{{graphQueriesTableName}}\n            | where TimeGenerated > ago(12h) | where name_s == \"no data test\"               | summarize Time = max(TimeGenerated)\n            | where isnotempty(Time)"
+                            "lastDataReceivedQuery": "{{graphQueriesTableName}}\n            | where TimeGenerated > ago(12h)  | summarize Time = max(TimeGenerated)\n            | where isnotempty(Time)"
                         }
                     ],
                     "connectivityCriteria": [
diff --git a/Solutions/Google Cloud Platform Security Command Center/ReleaseNotes.md b/Solutions/Google Cloud Platform Security Command Center/ReleaseNotes.md
index 2afcd26bfe9..b505b3409c7 100644
--- a/Solutions/Google Cloud Platform Security Command Center/ReleaseNotes.md	
+++ b/Solutions/Google Cloud Platform Security Command Center/ReleaseNotes.md	
@@ -1,4 +1,5 @@
-| **Version** | **Date Modified (DD-MM-YYYY)** | **Change History**                          |
-|-------------|--------------------------------|---------------------------------------------|
-| 3.0.5       | 16-05-2024                     | Modification in ** Data Connector **        |
-| 3.0.4       | 28-02-2024                     | Initial solution release                    |
\ No newline at end of file
+| **Version** | **Date Modified (DD-MM-YYYY)** | **Change History**                             |
+|-------------|--------------------------------|------------------------------------------------|
+| 3.0.6       | 12-11-2024                     | Modified datatype query for **Data Connector** |
+| 3.0.5       | 16-05-2024                     | Modification in ** Data Connector **           |
+| 3.0.4       | 28-02-2024                     | Initial solution release                       |
\ No newline at end of file