GreyNoise Threat Intelligence: SDK Update Addresses Function App Runtime Issues

What Changed

Updated GreyNoise Threat Intelligence solution from v3.0.3 to v3.1.0 with dependency upgrades and runtime fixes:

Updated GreyNoise Python SDK from v3.0.1 to v3.0.2
Fixed Python module mismatches in requirements.txt
Bumped Azure Functions runtime from bundle v3 to v4
Updated data connector instructions referencing new Threat Intelligence (New) solution
Increased function timeout to 2 hours

Security Impact (Visibility & Fidelity)

This maintenance update addresses connector stability issues that could impact threat intelligence data ingestion reliability. The fixes ensure:

Consistent Data Flow: Resolved module compatibility issues that could cause connector failures
Runtime Stability: Updated Azure Functions runtime eliminates potential execution timeouts
API Compatibility: Updated SDK maintains compatibility with GreyNoise threat intelligence APIs

No changes to detection logic or data schema - existing threat intelligence queries and detections remain unaffected. This is purely a maintenance release to ensure reliable operation of the GreyNoise connector infrastructure.

The solution continues to ingest IP reputation data and context from GreynoiseThreatIntelligence into the ThreatIntelligenceIndicator table for correlation with security events.

Affected Files

Solutions/GreyNoiseThreatIntelligence/Data Connectors/GreyNoiseConnector_UploadIndicatorsAPI.json
Solutions/GreyNoiseThreatIntelligence/Data Connectors/host.json
Solutions/GreyNoiseThreatIntelligence/Data Connectors/requirements.txt
(packaging artefacts: 3.1.0.zip, GreyNoiseAPISentinelConn.zip, ReleaseNotes.md, SolutionMetadata.json, Solution_GreyNoise.json, mainTemplate.json)

What Changed#

Security Impact (Visibility & Fidelity)#

Affected Files#

What Changed

Security Impact (Visibility & Fidelity)

Affected Files