Fluency SIEM Plug-ins

Platform_PluginLambda

The Platform_PluginLambda function is a built-in function that allows the FPL script to access and (remotely) call the corresponder vendor plugin(s) for the APIs listed below.

The CUSTOMER argument is used to specify one or more running instance(s) of the same type of plugin, in the case of multiple customer's data going into a single Fluency SIEM deployment.

Note: Wildcards * are accepted for this argument to facilitate selection

The LAMBDA_FUNCTION argument is a lambda that provides the actual logic that will be performed remotely on the selected plugin.

    Platform_PluginLambda(<PLUGIN_NAME>, <CUSTOMER>, <LAMBDA_FUNCTION>)

pluginLambda(pluginType, customers, (customer) ⇒ {})
- call registered plugin to run FPL lambda

let threats = Platform_PluginLambda("Cylance", "*", (customer) => {
       let threats = Cylance_LoadThreat((obj) => {
          let {sha256:ID, md5, name, classification, sub_classification} = obj
          return {ID, name, classification, sub_classification, customer}
       })
       return {threats}
})

Supported Products

The following APIs are supported within FPL via the Fluency SIEM Cylance Plugin integration.

Platform_PluginLambda​

Supported Products​

Platform_PluginLambda

Supported Products