Auto-select “False Positive” tag when creating a false positive rule #1366
Description
Acknowledgements
- I have searched (https://github.com/utmstack/UTMStack/issues) for past instances of this issue
- I have verified that my UTMStack version is up-to-date
Describe the bug
Currently, when creating a False Positive rule from an alert in Threat Management, the “False Positive” tag is not automatically pre-selected. This requires users to manually choose the tag, which can lead to confusion and unnecessary extra steps during rule creation.
Regression Issue
- Select this option if this issue appears to be a regression.
Expected Behavior
- When initiating the creation of a False Positive rule, the system should automatically select or display the “False Positive” tag by default.
- This behavior clearly indicates the purpose of the action and improves workflow efficiency for analysts.
Current Behavior
- The user must manually select the “False Positive” tag when defining the rule.
- This introduces minor friction and reduces the clarity of the action’s intent, especially for new users.
Reproduction Steps
- Navigate to Threat Management → Alerts.
- Select an alert and choose the option “Create False Positive Rule.”
- Observe that the False Positive tag is not automatically selected in the rule creation form.
Possible Solution
No response
Additional Information/Context
No response
UTMStack Version
11
Operating System and version
MacOs
Hypervisor and Version | Server Vendor and Model
Browser and version
Google Chrome
Metadata
Metadata
Assignees
Labels
Type
Projects
Status