Does Google perform any checks or limit the libraries that can be imported in the libraries prompt via free text entry? I believe its connected to pip so it would be theoretically possible to import malicious libraries?
Page 1 / 1
The only limitation I know is there's a Maximum dependency size, Per the documentation
https://cloud.google.com/chronicle/docs/soar/respond/start-developing/my-first-integration#creating-your-first-custom-integration-in-the-ide it does mention to download the dependencies from a reliable source.
For free form it needs to find a version that matches the free form name search, so you could in theory search anything even something malicious and if it matches it will be added. This is just my assumption though.
Reply
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.