PyPI - catocli - Versions diffs - 1.0.13__py3-none-any.whl → 1.0.15__py3-none-any.whl - Mend

catocli 1.0.13py3-none-any.whl → 1.0.15py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of catocli might be problematic. Click here for more details.

Files changed (253) hide show

catocli/Utils/clidriver.py +15 -2
catocli/__init__.py +1 -1
catocli/parsers/custom/customLib.py +3 -1
catocli/parsers/mutation_accountManagement/README.md +7 -0
catocli/parsers/mutation_accountManagement/__init__.py +51 -0
catocli/parsers/mutation_accountManagement_addAccount/README.md +17 -0
catocli/parsers/mutation_accountManagement_removeAccount/README.md +16 -0
catocli/parsers/mutation_accountManagement_updateAccount/README.md +17 -0
catocli/parsers/mutation_admin_addAdmin/README.md +2 -2
catocli/parsers/mutation_admin_updateAdmin/README.md +2 -2
catocli/parsers/mutation_container_delete/README.md +2 -2
catocli/parsers/mutation_policy_internetFirewall_addRule/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_addSection/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_createPolicyRevision/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_discardPolicyRevision/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_moveRule/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_moveSection/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_publishPolicyRevision/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_removeRule/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_removeSection/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_updatePolicy/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_updateRule/README.md +3 -3
catocli/parsers/mutation_policy_internetFirewall_updateSection/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_addRule/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_addSection/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_createPolicyRevision/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_discardPolicyRevision/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_moveRule/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_moveSection/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_publishPolicyRevision/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_removeRule/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_removeSection/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_updatePolicy/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_updateRule/README.md +3 -3
catocli/parsers/mutation_policy_wanFirewall_updateSection/README.md +3 -3
catocli/parsers/mutation_site/__init__.py +14 -0
catocli/parsers/mutation_site_addIpsecIkeV2Site/README.md +2 -2
catocli/parsers/mutation_site_addIpsecIkeV2SiteTunnels/README.md +2 -2
catocli/parsers/mutation_site_addNetworkRange/README.md +2 -2
catocli/parsers/mutation_site_addSocketSite/README.md +2 -2
catocli/parsers/mutation_site_addStaticHost/README.md +2 -2
catocli/parsers/mutation_site_removeIpsecIkeV2SiteTunnels/README.md +18 -0
catocli/parsers/mutation_site_updateHa/README.md +2 -2
catocli/parsers/mutation_site_updateIpsecIkeV2SiteGeneralDetails/README.md +2 -2
catocli/parsers/mutation_site_updateIpsecIkeV2SiteTunnels/README.md +2 -2
catocli/parsers/mutation_site_updateNetworkRange/README.md +2 -2
catocli/parsers/mutation_site_updateSiteGeneralDetails/README.md +2 -2
catocli/parsers/mutation_site_updateSocketInterface/README.md +2 -2
catocli/parsers/mutation_site_updateStaticHost/README.md +2 -2
catocli/parsers/mutation_sites/__init__.py +14 -0
catocli/parsers/mutation_sites_addIpsecIkeV2Site/README.md +2 -2
catocli/parsers/mutation_sites_addIpsecIkeV2SiteTunnels/README.md +2 -2
catocli/parsers/mutation_sites_addNetworkRange/README.md +2 -2
catocli/parsers/mutation_sites_addSocketSite/README.md +2 -2
catocli/parsers/mutation_sites_addStaticHost/README.md +2 -2
catocli/parsers/mutation_sites_removeIpsecIkeV2SiteTunnels/README.md +18 -0
catocli/parsers/mutation_sites_updateHa/README.md +2 -2
catocli/parsers/mutation_sites_updateIpsecIkeV2SiteGeneralDetails/README.md +2 -2
catocli/parsers/mutation_sites_updateIpsecIkeV2SiteTunnels/README.md +2 -2
catocli/parsers/mutation_sites_updateNetworkRange/README.md +2 -2
catocli/parsers/mutation_sites_updateSiteGeneralDetails/README.md +2 -2
catocli/parsers/mutation_sites_updateSocketInterface/README.md +2 -2
catocli/parsers/mutation_sites_updateStaticHost/README.md +2 -2
catocli/parsers/parserApiClient.py +7 -4
catocli/parsers/query_accountManagement/README.md +16 -0
catocli/parsers/query_accountManagement/__init__.py +17 -0
catocli/parsers/query_admins/README.md +2 -2
catocli/parsers/query_appStats/README.md +5 -5
catocli/parsers/query_appStatsTimeSeries/README.md +4 -4
catocli/parsers/query_auditFeed/README.md +2 -2
catocli/parsers/query_container/README.md +8 -8
catocli/parsers/query_entityLookup/README.md +6 -6
catocli/parsers/query_events/README.md +5 -5
catocli/parsers/query_eventsFeed/README.md +2 -2
catocli/parsers/query_eventsTimeSeries/README.md +4 -4
catocli/parsers/query_hardwareManagement/README.md +2 -2
catocli/parsers/query_policy/README.md +3 -3
catocli/parsers/query_xdr_stories/README.md +2 -2
{catocli-1.0.13.dist-info → catocli-1.0.15.dist-info}/METADATA +1 -1
catocli-1.0.15.dist-info/RECORD +275 -0
{catocli-1.0.13.dist-info → catocli-1.0.15.dist-info}/top_level.txt +0 -2
graphql_client/api_client_types.py +4 -0
models/mutation.accountManagement.addAccount.json +908 -0
models/mutation.accountManagement.removeAccount.json +446 -0
models/mutation.accountManagement.updateAccount.json +524 -0
models/mutation.admin.addAdmin.json +103 -103
models/mutation.admin.removeAdmin.json +3 -3
models/mutation.admin.updateAdmin.json +121 -121
models/mutation.container.delete.json +67 -67
models/mutation.policy.internetFirewall.addRule.json +2497 -1889
models/mutation.policy.internetFirewall.addSection.json +92 -92
models/mutation.policy.internetFirewall.createPolicyRevision.json +734 -546
models/mutation.policy.internetFirewall.discardPolicyRevision.json +734 -546
models/mutation.policy.internetFirewall.moveRule.json +723 -535
models/mutation.policy.internetFirewall.moveSection.json +85 -85
models/mutation.policy.internetFirewall.publishPolicyRevision.json +734 -546
models/mutation.policy.internetFirewall.removeRule.json +710 -522
models/mutation.policy.internetFirewall.removeSection.json +72 -72
models/mutation.policy.internetFirewall.updatePolicy.json +734 -546
models/mutation.policy.internetFirewall.updateRule.json +2476 -1885
models/mutation.policy.internetFirewall.updateSection.json +85 -85
models/mutation.policy.wanFirewall.addRule.json +2577 -1225
models/mutation.policy.wanFirewall.addSection.json +92 -92
models/mutation.policy.wanFirewall.createPolicyRevision.json +800 -455
models/mutation.policy.wanFirewall.discardPolicyRevision.json +800 -455
models/mutation.policy.wanFirewall.moveRule.json +789 -444
models/mutation.policy.wanFirewall.moveSection.json +85 -85
models/mutation.policy.wanFirewall.publishPolicyRevision.json +800 -455
models/mutation.policy.wanFirewall.removeRule.json +776 -431
models/mutation.policy.wanFirewall.removeSection.json +72 -72
models/mutation.policy.wanFirewall.updatePolicy.json +800 -455
models/mutation.policy.wanFirewall.updateRule.json +2597 -1265
models/mutation.policy.wanFirewall.updateSection.json +85 -85
models/mutation.site.addIpsecIkeV2Site.json +43 -43
models/mutation.site.addIpsecIkeV2SiteTunnels.json +505 -102
models/mutation.site.addNetworkRange.json +53 -53
models/mutation.site.addSocketSite.json +43 -43
models/mutation.site.addStaticHost.json +33 -33
models/mutation.site.removeIpsecIkeV2SiteTunnels.json +861 -0
models/mutation.site.removeNetworkRange.json +3 -3
models/mutation.site.removeSite.json +3 -3
models/mutation.site.removeStaticHost.json +3 -3
models/mutation.site.updateHa.json +54 -54
models/mutation.site.updateIpsecIkeV2SiteGeneralDetails.json +79 -79
models/mutation.site.updateIpsecIkeV2SiteTunnels.json +123 -123
models/mutation.site.updateNetworkRange.json +74 -74
models/mutation.site.updateSiteGeneralDetails.json +73 -73
models/mutation.site.updateSocketInterface.json +282 -282
models/mutation.site.updateStaticHost.json +54 -54
models/mutation.sites.addIpsecIkeV2Site.json +43 -43
models/mutation.sites.addIpsecIkeV2SiteTunnels.json +505 -102
models/mutation.sites.addNetworkRange.json +53 -53
models/mutation.sites.addSocketSite.json +43 -43
models/mutation.sites.addStaticHost.json +33 -33
models/mutation.sites.removeIpsecIkeV2SiteTunnels.json +861 -0
models/mutation.sites.removeNetworkRange.json +3 -3
models/mutation.sites.removeSite.json +3 -3
models/mutation.sites.removeStaticHost.json +3 -3
models/mutation.sites.updateHa.json +54 -54
models/mutation.sites.updateIpsecIkeV2SiteGeneralDetails.json +79 -79
models/mutation.sites.updateIpsecIkeV2SiteTunnels.json +123 -123
models/mutation.sites.updateNetworkRange.json +74 -74
models/mutation.sites.updateSiteGeneralDetails.json +73 -73
models/mutation.sites.updateSocketInterface.json +282 -282
models/mutation.sites.updateStaticHost.json +54 -54
models/query.accountManagement.json +355 -0
models/query.accountMetrics.json +235 -235
models/query.accountRoles.json +3 -3
models/query.accountSnapshot.json +278 -118
models/query.admin.json +24 -24
models/query.admins.json +138 -138
models/query.appStats.json +92 -92
models/query.appStatsTimeSeries.json +78 -78
models/query.auditFeed.json +77 -77
models/query.container.json +192 -192
models/query.entityLookup.json +154 -154
models/query.events.json +54 -54
models/query.eventsFeed.json +38 -38
models/query.eventsTimeSeries.json +78 -78
models/query.hardwareManagement.json +125 -125
models/query.licensing.json +933 -249
models/query.policy.json +1502 -970
models/query.xdr.stories.json +842 -842
models/query.xdr.story.json +610 -610
schema/catolib.py +12 -13
build/lib/catocli/Utils/clidriver.py +0 -117
build/lib/catocli/__init__.py +0 -2
build/lib/catocli/__main__.py +0 -12
build/lib/catocli/parsers/custom/__init__.py +0 -47
build/lib/catocli/parsers/custom/customLib.py +0 -70
build/lib/catocli/parsers/mutation_admin/__init__.py +0 -51
build/lib/catocli/parsers/mutation_container/__init__.py +0 -23
build/lib/catocli/parsers/mutation_policy/__init__.py +0 -357
build/lib/catocli/parsers/mutation_site/__init__.py +0 -219
build/lib/catocli/parsers/mutation_sites/__init__.py +0 -219
build/lib/catocli/parsers/parserApiClient.py +0 -309
build/lib/catocli/parsers/query_accountBySubdomain/__init__.py +0 -17
build/lib/catocli/parsers/query_accountMetrics/__init__.py +0 -17
build/lib/catocli/parsers/query_accountRoles/__init__.py +0 -17
build/lib/catocli/parsers/query_accountSnapshot/__init__.py +0 -17
build/lib/catocli/parsers/query_admin/__init__.py +0 -17
build/lib/catocli/parsers/query_admins/__init__.py +0 -17
build/lib/catocli/parsers/query_appStats/__init__.py +0 -17
build/lib/catocli/parsers/query_appStatsTimeSeries/__init__.py +0 -17
build/lib/catocli/parsers/query_auditFeed/__init__.py +0 -17
build/lib/catocli/parsers/query_container/__init__.py +0 -17
build/lib/catocli/parsers/query_entityLookup/__init__.py +0 -17
build/lib/catocli/parsers/query_events/__init__.py +0 -17
build/lib/catocli/parsers/query_eventsFeed/__init__.py +0 -17
build/lib/catocli/parsers/query_eventsTimeSeries/__init__.py +0 -17
build/lib/catocli/parsers/query_hardwareManagement/__init__.py +0 -17
build/lib/catocli/parsers/query_licensing/__init__.py +0 -17
build/lib/catocli/parsers/query_policy/__init__.py +0 -17
build/lib/catocli/parsers/query_siteLocation/__init__.py +0 -17
build/lib/catocli/parsers/query_subDomains/__init__.py +0 -17
build/lib/catocli/parsers/query_xdr/__init__.py +0 -37
build/lib/catocli/parsers/raw/__init__.py +0 -9
build/lib/graphql_client/__init__.py +0 -11
build/lib/graphql_client/api/__init__.py +0 -3
build/lib/graphql_client/api/call_api.py +0 -73
build/lib/graphql_client/api_client.py +0 -192
build/lib/graphql_client/api_client_types.py +0 -404
build/lib/graphql_client/configuration.py +0 -230
build/lib/graphql_client/models/__init__.py +0 -13
build/lib/graphql_client/models/no_schema.py +0 -71
build/lib/schema/catolib.py +0 -1016
build/lib/schema/importSchema.py +0 -60
build/lib/vendor/certifi/__init__.py +0 -4
build/lib/vendor/certifi/__main__.py +0 -12
build/lib/vendor/certifi/core.py +0 -114
build/lib/vendor/certifi/py.typed +0 -0
build/lib/vendor/six.py +0 -998
build/lib/vendor/urllib3/__init__.py +0 -211
build/lib/vendor/urllib3/_base_connection.py +0 -172
build/lib/vendor/urllib3/_collections.py +0 -483
build/lib/vendor/urllib3/_request_methods.py +0 -278
build/lib/vendor/urllib3/_version.py +0 -16
build/lib/vendor/urllib3/connection.py +0 -1033
build/lib/vendor/urllib3/connectionpool.py +0 -1182
build/lib/vendor/urllib3/contrib/__init__.py +0 -0
build/lib/vendor/urllib3/contrib/emscripten/__init__.py +0 -18
build/lib/vendor/urllib3/contrib/emscripten/connection.py +0 -254
build/lib/vendor/urllib3/contrib/emscripten/fetch.py +0 -418
build/lib/vendor/urllib3/contrib/emscripten/request.py +0 -22
build/lib/vendor/urllib3/contrib/emscripten/response.py +0 -285
build/lib/vendor/urllib3/contrib/pyopenssl.py +0 -552
build/lib/vendor/urllib3/contrib/socks.py +0 -228
build/lib/vendor/urllib3/exceptions.py +0 -321
build/lib/vendor/urllib3/fields.py +0 -341
build/lib/vendor/urllib3/filepost.py +0 -89
build/lib/vendor/urllib3/http2/__init__.py +0 -53
build/lib/vendor/urllib3/http2/connection.py +0 -356
build/lib/vendor/urllib3/http2/probe.py +0 -87
build/lib/vendor/urllib3/poolmanager.py +0 -637
build/lib/vendor/urllib3/py.typed +0 -2
build/lib/vendor/urllib3/response.py +0 -1265
build/lib/vendor/urllib3/util/__init__.py +0 -42
build/lib/vendor/urllib3/util/connection.py +0 -137
build/lib/vendor/urllib3/util/proxy.py +0 -43
build/lib/vendor/urllib3/util/request.py +0 -256
build/lib/vendor/urllib3/util/response.py +0 -101
build/lib/vendor/urllib3/util/retry.py +0 -533
build/lib/vendor/urllib3/util/ssl_.py +0 -513
build/lib/vendor/urllib3/util/ssl_match_hostname.py +0 -159
build/lib/vendor/urllib3/util/ssltransport.py +0 -276
build/lib/vendor/urllib3/util/timeout.py +0 -275
build/lib/vendor/urllib3/util/url.py +0 -471
build/lib/vendor/urllib3/util/util.py +0 -42
build/lib/vendor/urllib3/util/wait.py +0 -124
catocli-1.0.13.dist-info/RECORD +0 -344
{catocli-1.0.13.dist-info → catocli-1.0.15.dist-info}/LICENSE +0 -0
{catocli-1.0.13.dist-info → catocli-1.0.15.dist-info}/WHEEL +0 -0
{catocli-1.0.13.dist-info → catocli-1.0.15.dist-info}/entry_points.txt +0 -0

models/query.xdr.story.json CHANGED Viewed

@@ -531,9 +531,9 @@
                     "isDeprecated": false,
                     "name": "story",
                     "path": "story",
-                    "requestStr": "$Story:Story ",
+                    "requestStr": "$story:Story ",
                     "required": false,
-                    "responseStr": "story:$Story ",
+                    "responseStr": "story:$story ",
                     "type": {
                         "definition": {
                             "description": null,
@@ -670,16 +670,16 @@
                                     "isDeprecated": false,
                                     "name": "incident",
                                     "path": "story.incident",
-                                    "requestStr": "$MergedIncident:MergedIncident! ",
+                                    "requestStr": "$mergedIncident:MergedIncident! ",
                                     "required": true,
-                                    "responseStr": "incident:$MergedIncident ",
+                                    "responseStr": "incident:$mergedIncident ",
                                     "type": {
                                         "definition": {
                                             "description": null,
                                             "enumValues": null,
                                             "fields": {
                                                 "analystFeedback": {
-                                                    "alias": "AnalystFeedbackAnalystFeedback: analystFeedback",
+                                                    "alias": "analystFeedbackAnalystFeedback: analystFeedback",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Fields related to analysts research of the threat incident",
@@ -687,9 +687,9 @@
                                                     "isDeprecated": false,
                                                     "name": "analystFeedback",
                                                     "path": "story.incident.analystFeedback",
-                                                    "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                    "requestStr": "$analystFeedback:AnalystFeedback ",
                                                     "required": false,
-                                                    "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                    "responseStr": "analystFeedback:$analystFeedback ",
                                                     "type": {
                                                         "definition": {
                                                             "description": null,
@@ -793,9 +793,9 @@
                                                                     "isDeprecated": false,
                                                                     "name": "threatType",
                                                                     "path": "story.incident.analystFeedback.threatType",
-                                                                    "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                    "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                     "required": false,
-                                                                    "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                    "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                     "type": {
                                                                         "definition": {
                                                                             "description": null,
@@ -875,7 +875,7 @@
                                                                         "name": "AnalystFeedbackThreatType",
                                                                         "non_null": false
                                                                     },
-                                                                    "varName": "AnalystFeedbackThreatType"
+                                                                    "varName": "analystFeedbackThreatType"
                                                                 },
                                                                 "verdict": {
                                                                     "args": {},
@@ -947,10 +947,10 @@
                                                         "name": "AnalystFeedback",
                                                         "non_null": false
                                                     },
-                                                    "varName": "AnalystFeedback"
+                                                    "varName": "analystFeedback"
                                                 },
                                                 "connectionType": {
-                                                    "alias": "ConnectionTypeEnumConnectionType: connectionType",
+                                                    "alias": "connectionTypeEnumConnectionType: connectionType",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Enum for the connection for this incident (ie. site, host, user)",
@@ -1041,7 +1041,7 @@
                                                     "varName": "description"
                                                 },
                                                 "engineType": {
-                                                    "alias": "StoryEngineTypeEnumEngineType: engineType",
+                                                    "alias": "storyEngineTypeEnumEngineType: engineType",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "XDR engine involved with the incident",
@@ -1208,7 +1208,7 @@
                                                     "varName": "predictedThreatType"
                                                 },
                                                 "predictedVerdict": {
-                                                    "alias": "StoryVerdictEnumPredictedVerdict: predictedVerdict",
+                                                    "alias": "storyVerdictEnumPredictedVerdict: predictedVerdict",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": null,
@@ -1265,7 +1265,7 @@
                                                     "varName": "predictedVerdict"
                                                 },
                                                 "producer": {
-                                                    "alias": "StoryProducerEnumProducer: producer",
+                                                    "alias": "storyProducerEnumProducer: producer",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Enum for the Producer (specific XDR engine and service) involved with the incident",
@@ -1414,7 +1414,7 @@
                                                     "varName": "research"
                                                 },
                                                 "site": {
-                                                    "alias": "SiteRefSite: site",
+                                                    "alias": "siteRefSite: site",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Cato ID and name for the site",
@@ -1422,9 +1422,9 @@
                                                     "isDeprecated": false,
                                                     "name": "site",
                                                     "path": "story.incident.site",
-                                                    "requestStr": "$SiteRef:SiteRef ",
+                                                    "requestStr": "$siteRef:SiteRef ",
                                                     "required": false,
-                                                    "responseStr": "site:$SiteRef ",
+                                                    "responseStr": "site:$siteRef ",
                                                     "type": {
                                                         "definition": {
                                                             "description": null,
@@ -1486,7 +1486,7 @@
                                                         "name": "SiteRef",
                                                         "non_null": false
                                                     },
-                                                    "varName": "SiteRef"
+                                                    "varName": "siteRef"
                                                 },
                                                 "siteName": {
                                                     "args": {},
@@ -1549,7 +1549,7 @@
                                                     "varName": "sourceIp"
                                                 },
                                                 "status": {
-                                                    "alias": "StoryStatusEnumStatus: status",
+                                                    "alias": "storyStatusEnumStatus: status",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Enum for the status of this story (ie. Open, Closed, Monitoring)",
@@ -1658,7 +1658,7 @@
                                                     "varName": "ticket"
                                                 },
                                                 "user": {
-                                                    "alias": "UserRefUser: user",
+                                                    "alias": "userRefUser: user",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Cato ID and name for the user",
@@ -1666,9 +1666,9 @@
                                                     "isDeprecated": false,
                                                     "name": "user",
                                                     "path": "story.incident.user",
-                                                    "requestStr": "$UserRef:UserRef ",
+                                                    "requestStr": "$userRef:UserRef ",
                                                     "required": false,
-                                                    "responseStr": "user:$UserRef ",
+                                                    "responseStr": "user:$userRef ",
                                                     "type": {
                                                         "definition": {
                                                             "description": null,
@@ -1730,10 +1730,10 @@
                                                         "name": "UserRef",
                                                         "non_null": false
                                                     },
-                                                    "varName": "UserRef"
+                                                    "varName": "userRef"
                                                 },
                                                 "vendor": {
-                                                    "alias": "VendorEnumVendor: vendor",
+                                                    "alias": "vendorEnumVendor: vendor",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Vendor that identified the incident, such as Cato or Microsoft",
@@ -1788,7 +1788,7 @@
                                                     "enumValues": null,
                                                     "fields": {
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -1796,9 +1796,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.AnomalyEvents.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -1902,9 +1902,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.AnomalyEvents.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -1984,7 +1984,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -2056,7 +2056,7 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "breakdownField": {
                                                             "args": {},
@@ -2102,7 +2102,7 @@
                                                             "varName": "clientClass"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "AnomalyEventsConnectionType: connectionType",
+                                                            "alias": "anomalyEventsConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2153,7 +2153,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "AnomalyEventsCriticality: criticality",
+                                                            "alias": "anomalyEventsCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2174,7 +2174,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "AnomalyEventsDescription: description",
+                                                            "alias": "anomalyEventsDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2242,9 +2242,9 @@
                                                             "isDeprecated": false,
                                                             "name": "drillDownFilter",
                                                             "path": "story.incident.AnomalyEvents.drillDownFilter",
-                                                            "requestStr": "$StoryDrillDownFilter:[StoryDrillDownFilter] ",
+                                                            "requestStr": "$storyDrillDownFilter:[StoryDrillDownFilter] ",
                                                             "required": false,
-                                                            "responseStr": "drillDownFilter:$StoryDrillDownFilter ",
+                                                            "responseStr": "drillDownFilter:$storyDrillDownFilter ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -2308,10 +2308,10 @@
                                                                 "name": "StoryDrillDownFilter",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "StoryDrillDownFilter"
+                                                            "varName": "storyDrillDownFilter"
                                                         },
                                                         "engineType": {
-                                                            "alias": "AnomalyEventsEngineType: engineType",
+                                                            "alias": "anomalyEventsEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2381,9 +2381,9 @@
                                                             "isDeprecated": false,
                                                             "name": "extra",
                                                             "path": "story.incident.AnomalyEvents.extra",
-                                                            "requestStr": "$Extra:[Extra] ",
+                                                            "requestStr": "$extra:[Extra] ",
                                                             "required": false,
-                                                            "responseStr": "extra:$Extra ",
+                                                            "responseStr": "extra:$extra ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -2468,10 +2468,10 @@
                                                                 "name": "Extra",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Extra"
+                                                            "varName": "extra"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "AnomalyEventsFirstSignal: firstSignal",
+                                                            "alias": "anomalyEventsFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2500,9 +2500,9 @@
                                                             "isDeprecated": false,
                                                             "name": "gaussian",
                                                             "path": "story.incident.AnomalyEvents.gaussian",
-                                                            "requestStr": "$Gaussian:Gaussian ",
+                                                            "requestStr": "$gaussian:Gaussian ",
                                                             "required": false,
-                                                            "responseStr": "gaussian:$Gaussian ",
+                                                            "responseStr": "gaussian:$gaussian ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -2622,10 +2622,10 @@
                                                                 "name": "Gaussian",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Gaussian"
+                                                            "varName": "gaussian"
                                                         },
                                                         "id": {
-                                                            "alias": "AnomalyEventsId: id",
+                                                            "alias": "anomalyEventsId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2647,7 +2647,7 @@
                                                             "varName": "id"
                                                         },
                                                         "indication": {
-                                                            "alias": "AnomalyEventsIndication: indication",
+                                                            "alias": "anomalyEventsIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2669,7 +2669,7 @@
                                                             "varName": "indication"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "AnomalyEventsLastSignal: lastSignal",
+                                                            "alias": "anomalyEventsLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2738,9 +2738,9 @@
                                                             "isDeprecated": false,
                                                             "name": "metric",
                                                             "path": "story.incident.AnomalyEvents.metric",
-                                                            "requestStr": "$Metric:Metric ",
+                                                            "requestStr": "$metric:Metric ",
                                                             "required": false,
-                                                            "responseStr": "metric:$Metric ",
+                                                            "responseStr": "metric:$metric ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -2802,7 +2802,7 @@
                                                                 "name": "Metric",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Metric"
+                                                            "varName": "metric"
                                                         },
                                                         "metricDetails": {
                                                             "args": {},
@@ -2812,9 +2812,9 @@
                                                             "isDeprecated": false,
                                                             "name": "metricDetails",
                                                             "path": "story.incident.AnomalyEvents.metricDetails",
-                                                            "requestStr": "$MetricDetails:MetricDetails ",
+                                                            "requestStr": "$metricDetails:MetricDetails ",
                                                             "required": false,
-                                                            "responseStr": "metricDetails:$MetricDetails ",
+                                                            "responseStr": "metricDetails:$metricDetails ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -2876,7 +2876,7 @@
                                                                 "name": "MetricDetails",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "MetricDetails"
+                                                            "varName": "metricDetails"
                                                         },
                                                         "mitres": {
                                                             "args": {},
@@ -2886,9 +2886,9 @@
                                                             "isDeprecated": false,
                                                             "name": "mitres",
                                                             "path": "story.incident.AnomalyEvents.mitres",
-                                                            "requestStr": "$Mitre:[Mitre] ",
+                                                            "requestStr": "$mitre:[Mitre] ",
                                                             "required": false,
-                                                            "responseStr": "mitres:$Mitre ",
+                                                            "responseStr": "mitres:$mitre ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -2950,7 +2950,7 @@
                                                                 "name": "Mitre",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Mitre"
+                                                            "varName": "mitre"
                                                         },
                                                         "os": {
                                                             "args": {},
@@ -2973,7 +2973,7 @@
                                                             "varName": "os"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "AnomalyEventsPredictedThreatType: predictedThreatType",
+                                                            "alias": "anomalyEventsPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -2994,7 +2994,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "AnomalyEventsPredictedVerdict: predictedVerdict",
+                                                            "alias": "anomalyEventsPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3051,7 +3051,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "AnomalyEventsProducer: producer",
+                                                            "alias": "anomalyEventsProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3139,7 +3139,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "AnomalyEventsProducerName: producerName",
+                                                            "alias": "anomalyEventsProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3161,7 +3161,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "AnomalyEventsQueryName: queryName",
+                                                            "alias": "anomalyEventsQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3182,7 +3182,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "AnomalyEventsResearch: research",
+                                                            "alias": "anomalyEventsResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3232,9 +3232,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.AnomalyEvents.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -3377,10 +3377,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3388,9 +3388,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.AnomalyEvents.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -3452,10 +3452,10 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteName": {
-                                                            "alias": "AnomalyEventsSiteName: siteName",
+                                                            "alias": "anomalyEventsSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3476,7 +3476,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "AnomalyEventsSource: source",
+                                                            "alias": "anomalyEventsSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3497,7 +3497,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "AnomalyEventsSourceIp: sourceIp",
+                                                            "alias": "anomalyEventsSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3538,7 +3538,7 @@
                                                             "varName": "srcSiteId"
                                                         },
                                                         "status": {
-                                                            "alias": "AnomalyEventsStatus: status",
+                                                            "alias": "anomalyEventsStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3607,7 +3607,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "AnomalyEventsStoryDuration: storyDuration",
+                                                            "alias": "anomalyEventsStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -3655,9 +3655,9 @@
                                                             "isDeprecated": false,
                                                             "name": "targets",
                                                             "path": "story.incident.AnomalyEvents.targets",
-                                                            "requestStr": "$IncidentTargetRep:[IncidentTargetRep]! ",
+                                                            "requestStr": "$incidentTargetRep:[IncidentTargetRep]! ",
                                                             "required": true,
-                                                            "responseStr": "targets:$IncidentTargetRep ",
+                                                            "responseStr": "targets:$incidentTargetRep ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -3784,7 +3784,7 @@
                                                                             "varName": "engines"
                                                                         },
                                                                         "eventData": {
-                                                                            "alias": "EventEventData: eventData",
+                                                                            "alias": "eventEventData: eventData",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -3792,9 +3792,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "eventData",
                                                                             "path": "story.incident.AnomalyEvents.targets.eventData",
-                                                                            "requestStr": "$Event:[Event]! ",
+                                                                            "requestStr": "$event:[Event]! ",
                                                                             "required": true,
-                                                                            "responseStr": "eventData:$Event ",
+                                                                            "responseStr": "eventData:$event ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -3921,7 +3921,7 @@
                                                                                             "varName": "ruleId"
                                                                                         },
                                                                                         "scanResult": {
-                                                                                            "alias": "ScanResultScanResult: scanResult",
+                                                                                            "alias": "scanResultScanResult: scanResult",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -4112,7 +4112,7 @@
                                                                                 "name": "Event",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Event"
+                                                                            "varName": "event"
                                                                         },
                                                                         "infectionSource": {
                                                                             "args": {},
@@ -4215,7 +4215,7 @@
                                                                             "varName": "threatReference"
                                                                         },
                                                                         "type": {
-                                                                            "alias": "TargetTypeType: type",
+                                                                            "alias": "targetTypeType: type",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -4288,10 +4288,10 @@
                                                                 "name": "IncidentTargetRep",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTargetRep"
+                                                            "varName": "incidentTargetRep"
                                                         },
                                                         "ticket": {
-                                                            "alias": "AnomalyEventsTicket: ticket",
+                                                            "alias": "anomalyEventsTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -4319,9 +4319,9 @@
                                                             "isDeprecated": false,
                                                             "name": "timeSeries",
                                                             "path": "story.incident.AnomalyEvents.timeSeries",
-                                                            "requestStr": "$IncidentTimeseries:[IncidentTimeseries] ",
+                                                            "requestStr": "$incidentTimeseries:[IncidentTimeseries] ",
                                                             "required": false,
-                                                            "responseStr": "timeSeries:$IncidentTimeseries ",
+                                                            "responseStr": "timeSeries:$incidentTimeseries ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -4392,7 +4392,7 @@
                                                                             "varName": "info"
                                                                         },
                                                                         "key": {
-                                                                            "alias": "TimeseriesKeyKey: key",
+                                                                            "alias": "timeseriesKeyKey: key",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -4400,9 +4400,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "key",
                                                                             "path": "story.incident.AnomalyEvents.timeSeries.key",
-                                                                            "requestStr": "$TimeseriesKey:TimeseriesKey ",
+                                                                            "requestStr": "$timeseriesKey:TimeseriesKey ",
                                                                             "required": false,
-                                                                            "responseStr": "key:$TimeseriesKey ",
+                                                                            "responseStr": "key:$timeseriesKey ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -4416,9 +4416,9 @@
                                                                                             "isDeprecated": false,
                                                                                             "name": "dimensions",
                                                                                             "path": "story.incident.AnomalyEvents.timeSeries.key.dimensions",
-                                                                                            "requestStr": "$DimensionKey:[DimensionKey] ",
+                                                                                            "requestStr": "$dimensionKey:[DimensionKey] ",
                                                                                             "required": false,
-                                                                                            "responseStr": "dimensions:$DimensionKey ",
+                                                                                            "responseStr": "dimensions:$dimensionKey ",
                                                                                             "type": {
                                                                                                 "definition": {
                                                                                                     "description": null,
@@ -4481,7 +4481,7 @@
                                                                                                 "name": "DimensionKey",
                                                                                                 "non_null": false
                                                                                             },
-                                                                                            "varName": "DimensionKey"
+                                                                                            "varName": "dimensionKey"
                                                                                         },
                                                                                         "measureFieldName": {
                                                                                             "args": {},
@@ -4518,7 +4518,7 @@
                                                                                 "name": "TimeseriesKey",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "TimeseriesKey"
+                                                                            "varName": "timeseriesKey"
                                                                         },
                                                                         "label": {
                                                                             "args": {},
@@ -4562,7 +4562,7 @@
                                                                             "varName": "sum"
                                                                         },
                                                                         "units": {
-                                                                            "alias": "UnitTypeUnits: units",
+                                                                            "alias": "unitTypeUnits: units",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Identifies what unit of data this timeseries represents. Note that toRate is only available for particular types\nof data to make sense.",
@@ -4676,10 +4676,10 @@
                                                                 "name": "IncidentTimeseries",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTimeseries"
+                                                            "varName": "incidentTimeseries"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -4687,9 +4687,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.AnomalyEvents.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -4751,10 +4751,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "AnomalyEventsVendor: vendor",
+                                                            "alias": "anomalyEventsVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -4810,7 +4810,7 @@
                                                     "enumValues": null,
                                                     "fields": {
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -4818,9 +4818,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.AnomalyStats.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -4924,9 +4924,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.AnomalyStats.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -5006,7 +5006,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -5078,7 +5078,7 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "breakdownField": {
                                                             "args": {},
@@ -5124,7 +5124,7 @@
                                                             "varName": "clientClass"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "AnomalyStatsConnectionType: connectionType",
+                                                            "alias": "anomalyStatsConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5175,7 +5175,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "AnomalyStatsCriticality: criticality",
+                                                            "alias": "anomalyStatsCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5196,7 +5196,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "AnomalyStatsDescription: description",
+                                                            "alias": "anomalyStatsDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5264,9 +5264,9 @@
                                                             "isDeprecated": false,
                                                             "name": "drillDownFilter",
                                                             "path": "story.incident.AnomalyStats.drillDownFilter",
-                                                            "requestStr": "$StoryDrillDownFilter:[StoryDrillDownFilter] ",
+                                                            "requestStr": "$storyDrillDownFilter:[StoryDrillDownFilter] ",
                                                             "required": false,
-                                                            "responseStr": "drillDownFilter:$StoryDrillDownFilter ",
+                                                            "responseStr": "drillDownFilter:$storyDrillDownFilter ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -5330,10 +5330,10 @@
                                                                 "name": "StoryDrillDownFilter",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "StoryDrillDownFilter"
+                                                            "varName": "storyDrillDownFilter"
                                                         },
                                                         "engineType": {
-                                                            "alias": "AnomalyStatsEngineType: engineType",
+                                                            "alias": "anomalyStatsEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5403,9 +5403,9 @@
                                                             "isDeprecated": false,
                                                             "name": "extra",
                                                             "path": "story.incident.AnomalyStats.extra",
-                                                            "requestStr": "$Extra:[Extra] ",
+                                                            "requestStr": "$extra:[Extra] ",
                                                             "required": false,
-                                                            "responseStr": "extra:$Extra ",
+                                                            "responseStr": "extra:$extra ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -5490,10 +5490,10 @@
                                                                 "name": "Extra",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Extra"
+                                                            "varName": "extra"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "AnomalyStatsFirstSignal: firstSignal",
+                                                            "alias": "anomalyStatsFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5522,9 +5522,9 @@
                                                             "isDeprecated": false,
                                                             "name": "gaussian",
                                                             "path": "story.incident.AnomalyStats.gaussian",
-                                                            "requestStr": "$Gaussian:Gaussian ",
+                                                            "requestStr": "$gaussian:Gaussian ",
                                                             "required": false,
-                                                            "responseStr": "gaussian:$Gaussian ",
+                                                            "responseStr": "gaussian:$gaussian ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -5644,10 +5644,10 @@
                                                                 "name": "Gaussian",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Gaussian"
+                                                            "varName": "gaussian"
                                                         },
                                                         "id": {
-                                                            "alias": "AnomalyStatsId: id",
+                                                            "alias": "anomalyStatsId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5669,7 +5669,7 @@
                                                             "varName": "id"
                                                         },
                                                         "indication": {
-                                                            "alias": "AnomalyStatsIndication: indication",
+                                                            "alias": "anomalyStatsIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5691,7 +5691,7 @@
                                                             "varName": "indication"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "AnomalyStatsLastSignal: lastSignal",
+                                                            "alias": "anomalyStatsLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -5760,9 +5760,9 @@
                                                             "isDeprecated": false,
                                                             "name": "metric",
                                                             "path": "story.incident.AnomalyStats.metric",
-                                                            "requestStr": "$Metric:Metric ",
+                                                            "requestStr": "$metric:Metric ",
                                                             "required": false,
-                                                            "responseStr": "metric:$Metric ",
+                                                            "responseStr": "metric:$metric ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -5824,7 +5824,7 @@
                                                                 "name": "Metric",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Metric"
+                                                            "varName": "metric"
                                                         },
                                                         "metricDetails": {
                                                             "args": {},
@@ -5834,9 +5834,9 @@
                                                             "isDeprecated": false,
                                                             "name": "metricDetails",
                                                             "path": "story.incident.AnomalyStats.metricDetails",
-                                                            "requestStr": "$MetricDetails:MetricDetails ",
+                                                            "requestStr": "$metricDetails:MetricDetails ",
                                                             "required": false,
-                                                            "responseStr": "metricDetails:$MetricDetails ",
+                                                            "responseStr": "metricDetails:$metricDetails ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -5898,7 +5898,7 @@
                                                                 "name": "MetricDetails",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "MetricDetails"
+                                                            "varName": "metricDetails"
                                                         },
                                                         "mitres": {
                                                             "args": {},
@@ -5908,9 +5908,9 @@
                                                             "isDeprecated": false,
                                                             "name": "mitres",
                                                             "path": "story.incident.AnomalyStats.mitres",
-                                                            "requestStr": "$Mitre:[Mitre] ",
+                                                            "requestStr": "$mitre:[Mitre] ",
                                                             "required": false,
-                                                            "responseStr": "mitres:$Mitre ",
+                                                            "responseStr": "mitres:$mitre ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -5972,7 +5972,7 @@
                                                                 "name": "Mitre",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Mitre"
+                                                            "varName": "mitre"
                                                         },
                                                         "os": {
                                                             "args": {},
@@ -5995,7 +5995,7 @@
                                                             "varName": "os"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "AnomalyStatsPredictedThreatType: predictedThreatType",
+                                                            "alias": "anomalyStatsPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6016,7 +6016,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "AnomalyStatsPredictedVerdict: predictedVerdict",
+                                                            "alias": "anomalyStatsPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6073,7 +6073,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "AnomalyStatsProducer: producer",
+                                                            "alias": "anomalyStatsProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6161,7 +6161,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "AnomalyStatsProducerName: producerName",
+                                                            "alias": "anomalyStatsProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6183,7 +6183,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "AnomalyStatsQueryName: queryName",
+                                                            "alias": "anomalyStatsQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6204,7 +6204,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "AnomalyStatsResearch: research",
+                                                            "alias": "anomalyStatsResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6254,9 +6254,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.AnomalyStats.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -6399,10 +6399,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6410,9 +6410,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.AnomalyStats.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -6474,10 +6474,10 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteName": {
-                                                            "alias": "AnomalyStatsSiteName: siteName",
+                                                            "alias": "anomalyStatsSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6498,7 +6498,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "AnomalyStatsSource: source",
+                                                            "alias": "anomalyStatsSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6519,7 +6519,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "AnomalyStatsSourceIp: sourceIp",
+                                                            "alias": "anomalyStatsSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6560,7 +6560,7 @@
                                                             "varName": "srcSiteId"
                                                         },
                                                         "status": {
-                                                            "alias": "AnomalyStatsStatus: status",
+                                                            "alias": "anomalyStatsStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6629,7 +6629,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "AnomalyStatsStoryDuration: storyDuration",
+                                                            "alias": "anomalyStatsStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -6677,9 +6677,9 @@
                                                             "isDeprecated": false,
                                                             "name": "targets",
                                                             "path": "story.incident.AnomalyStats.targets",
-                                                            "requestStr": "$IncidentTargetRep:[IncidentTargetRep]! ",
+                                                            "requestStr": "$incidentTargetRep:[IncidentTargetRep]! ",
                                                             "required": true,
-                                                            "responseStr": "targets:$IncidentTargetRep ",
+                                                            "responseStr": "targets:$incidentTargetRep ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -6806,7 +6806,7 @@
                                                                             "varName": "engines"
                                                                         },
                                                                         "eventData": {
-                                                                            "alias": "EventEventData: eventData",
+                                                                            "alias": "eventEventData: eventData",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -6814,9 +6814,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "eventData",
                                                                             "path": "story.incident.AnomalyStats.targets.eventData",
-                                                                            "requestStr": "$Event:[Event]! ",
+                                                                            "requestStr": "$event:[Event]! ",
                                                                             "required": true,
-                                                                            "responseStr": "eventData:$Event ",
+                                                                            "responseStr": "eventData:$event ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -6943,7 +6943,7 @@
                                                                                             "varName": "ruleId"
                                                                                         },
                                                                                         "scanResult": {
-                                                                                            "alias": "ScanResultScanResult: scanResult",
+                                                                                            "alias": "scanResultScanResult: scanResult",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -7134,7 +7134,7 @@
                                                                                 "name": "Event",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Event"
+                                                                            "varName": "event"
                                                                         },
                                                                         "infectionSource": {
                                                                             "args": {},
@@ -7237,7 +7237,7 @@
                                                                             "varName": "threatReference"
                                                                         },
                                                                         "type": {
-                                                                            "alias": "TargetTypeType: type",
+                                                                            "alias": "targetTypeType: type",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -7310,10 +7310,10 @@
                                                                 "name": "IncidentTargetRep",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTargetRep"
+                                                            "varName": "incidentTargetRep"
                                                         },
                                                         "ticket": {
-                                                            "alias": "AnomalyStatsTicket: ticket",
+                                                            "alias": "anomalyStatsTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -7341,9 +7341,9 @@
                                                             "isDeprecated": false,
                                                             "name": "timeSeries",
                                                             "path": "story.incident.AnomalyStats.timeSeries",
-                                                            "requestStr": "$IncidentTimeseries:[IncidentTimeseries] ",
+                                                            "requestStr": "$incidentTimeseries:[IncidentTimeseries] ",
                                                             "required": false,
-                                                            "responseStr": "timeSeries:$IncidentTimeseries ",
+                                                            "responseStr": "timeSeries:$incidentTimeseries ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -7414,7 +7414,7 @@
                                                                             "varName": "info"
                                                                         },
                                                                         "key": {
-                                                                            "alias": "TimeseriesKeyKey: key",
+                                                                            "alias": "timeseriesKeyKey: key",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -7422,9 +7422,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "key",
                                                                             "path": "story.incident.AnomalyStats.timeSeries.key",
-                                                                            "requestStr": "$TimeseriesKey:TimeseriesKey ",
+                                                                            "requestStr": "$timeseriesKey:TimeseriesKey ",
                                                                             "required": false,
-                                                                            "responseStr": "key:$TimeseriesKey ",
+                                                                            "responseStr": "key:$timeseriesKey ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -7438,9 +7438,9 @@
                                                                                             "isDeprecated": false,
                                                                                             "name": "dimensions",
                                                                                             "path": "story.incident.AnomalyStats.timeSeries.key.dimensions",
-                                                                                            "requestStr": "$DimensionKey:[DimensionKey] ",
+                                                                                            "requestStr": "$dimensionKey:[DimensionKey] ",
                                                                                             "required": false,
-                                                                                            "responseStr": "dimensions:$DimensionKey ",
+                                                                                            "responseStr": "dimensions:$dimensionKey ",
                                                                                             "type": {
                                                                                                 "definition": {
                                                                                                     "description": null,
@@ -7503,7 +7503,7 @@
                                                                                                 "name": "DimensionKey",
                                                                                                 "non_null": false
                                                                                             },
-                                                                                            "varName": "DimensionKey"
+                                                                                            "varName": "dimensionKey"
                                                                                         },
                                                                                         "measureFieldName": {
                                                                                             "args": {},
@@ -7540,7 +7540,7 @@
                                                                                 "name": "TimeseriesKey",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "TimeseriesKey"
+                                                                            "varName": "timeseriesKey"
                                                                         },
                                                                         "label": {
                                                                             "args": {},
@@ -7584,7 +7584,7 @@
                                                                             "varName": "sum"
                                                                         },
                                                                         "units": {
-                                                                            "alias": "UnitTypeUnits: units",
+                                                                            "alias": "unitTypeUnits: units",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Identifies what unit of data this timeseries represents. Note that toRate is only available for particular types\nof data to make sense.",
@@ -7698,10 +7698,10 @@
                                                                 "name": "IncidentTimeseries",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTimeseries"
+                                                            "varName": "incidentTimeseries"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -7709,9 +7709,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.AnomalyStats.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -7773,10 +7773,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "AnomalyStatsVendor: vendor",
+                                                            "alias": "anomalyStatsVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -7839,16 +7839,16 @@
                                                             "isDeprecated": false,
                                                             "name": "alerts",
                                                             "path": "story.incident.CatoEndpoint.alerts",
-                                                            "requestStr": "$CatoEndpointAlert:[CatoEndpointAlert]! ",
+                                                            "requestStr": "$catoEndpointAlert:[CatoEndpointAlert]! ",
                                                             "required": true,
-                                                            "responseStr": "alerts:$CatoEndpointAlert ",
+                                                            "responseStr": "alerts:$catoEndpointAlert ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
                                                                     "enumValues": null,
                                                                     "fields": {
                                                                         "activities": {
-                                                                            "alias": "CatoActivityActivities: activities",
+                                                                            "alias": "catoActivityActivities: activities",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Unique Cato IDs for the activities related to the alert",
@@ -7856,9 +7856,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "activities",
                                                                             "path": "story.incident.CatoEndpoint.alerts.activities",
-                                                                            "requestStr": "$CatoActivity:[CatoActivity]! ",
+                                                                            "requestStr": "$catoActivity:[CatoActivity]! ",
                                                                             "required": true,
-                                                                            "responseStr": "activities:$CatoActivity ",
+                                                                            "responseStr": "activities:$catoActivity ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -7944,7 +7944,7 @@
                                                                                 "name": "CatoActivity",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "CatoActivity"
+                                                                            "varName": "catoActivity"
                                                                         },
                                                                         "createdDateTime": {
                                                                             "args": {},
@@ -8027,7 +8027,7 @@
                                                                             "varName": "endpointProtectionProfile"
                                                                         },
                                                                         "engineType": {
-                                                                            "alias": "CatoEndpointEngineTypeEngineType: engineType",
+                                                                            "alias": "catoEndpointEngineTypeEngineType: engineType",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Enum for the EPP engine related to this story",
@@ -8093,7 +8093,7 @@
                                                                             "varName": "id"
                                                                         },
                                                                         "mitreSubTechnique": {
-                                                                            "alias": "MitreMitreSubTechnique: mitreSubTechnique",
+                                                                            "alias": "mitreMitreSubTechnique: mitreSubTechnique",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "MITRE ATT&CK\u00ae sub-technique for the threat",
@@ -8101,9 +8101,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "mitreSubTechnique",
                                                                             "path": "story.incident.CatoEndpoint.alerts.mitreSubTechnique",
-                                                                            "requestStr": "$Mitre:[Mitre]! ",
+                                                                            "requestStr": "$mitre:[Mitre]! ",
                                                                             "required": true,
-                                                                            "responseStr": "mitreSubTechnique:$Mitre ",
+                                                                            "responseStr": "mitreSubTechnique:$mitre ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -8166,10 +8166,10 @@
                                                                                 "name": "Mitre",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Mitre"
+                                                                            "varName": "mitre"
                                                                         },
                                                                         "mitreTechnique": {
-                                                                            "alias": "MitreMitreTechnique: mitreTechnique",
+                                                                            "alias": "mitreMitreTechnique: mitreTechnique",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "MITRE ATT&CK\u00ae technique for the threat",
@@ -8177,9 +8177,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "mitreTechnique",
                                                                             "path": "story.incident.CatoEndpoint.alerts.mitreTechnique",
-                                                                            "requestStr": "$Mitre:[Mitre]! ",
+                                                                            "requestStr": "$mitre:[Mitre]! ",
                                                                             "required": true,
-                                                                            "responseStr": "mitreTechnique:$Mitre ",
+                                                                            "responseStr": "mitreTechnique:$mitre ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -8242,10 +8242,10 @@
                                                                                 "name": "Mitre",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Mitre"
+                                                                            "varName": "mitre"
                                                                         },
                                                                         "resources": {
-                                                                            "alias": "CatoResourceResources: resources",
+                                                                            "alias": "catoResourceResources: resources",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Data for the remediation status of the alert",
@@ -8253,9 +8253,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "resources",
                                                                             "path": "story.incident.CatoEndpoint.alerts.resources",
-                                                                            "requestStr": "$CatoResource:[CatoResource]! ",
+                                                                            "requestStr": "$catoResource:[CatoResource]! ",
                                                                             "required": true,
-                                                                            "responseStr": "resources:$CatoResource ",
+                                                                            "responseStr": "resources:$catoResource ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -8303,7 +8303,7 @@
                                                                                             "varName": "id"
                                                                                         },
                                                                                         "remediationStatus": {
-                                                                                            "alias": "RemediationStatusEnumRemediationStatus: remediationStatus",
+                                                                                            "alias": "remediationStatusEnumRemediationStatus: remediationStatus",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": "Enum for the remediation status associated with this resource",
@@ -8466,7 +8466,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "createdDateTime": {
-                                                                                                    "alias": "CatoFileResourceCreatedDateTime: createdDateTime",
+                                                                                                    "alias": "catoFileResourceCreatedDateTime: createdDateTime",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Timestamp that the this file resource was used",
@@ -8544,9 +8544,9 @@
                                                                                                     "isDeprecated": false,
                                                                                                     "name": "fileDetails",
                                                                                                     "path": "story.incident.CatoEndpoint.alerts.resources.CatoFileResource.fileDetails",
-                                                                                                    "requestStr": "$FileDetails:FileDetails ",
+                                                                                                    "requestStr": "$fileDetails:FileDetails ",
                                                                                                     "required": false,
-                                                                                                    "responseStr": "fileDetails:$FileDetails ",
+                                                                                                    "responseStr": "fileDetails:$fileDetails ",
                                                                                                     "type": {
                                                                                                         "definition": {
                                                                                                             "description": null,
@@ -8746,10 +8746,10 @@
                                                                                                         "name": "FileDetails",
                                                                                                         "non_null": false
                                                                                                     },
-                                                                                                    "varName": "FileDetails"
+                                                                                                    "varName": "fileDetails"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "CatoFileResourceId: id",
+                                                                                                    "alias": "catoFileResourceId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Unique Cato ID for this file resource",
@@ -8771,7 +8771,7 @@
                                                                                                     "varName": "id"
                                                                                                 },
                                                                                                 "remediationStatus": {
-                                                                                                    "alias": "CatoFileResourceRemediationStatus: remediationStatus",
+                                                                                                    "alias": "catoFileResourceRemediationStatus: remediationStatus",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Enum for the remediation status associated with this file resource",
@@ -8935,7 +8935,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "createdDateTime": {
-                                                                                                    "alias": "CatoProcessResourceCreatedDateTime: createdDateTime",
+                                                                                                    "alias": "catoProcessResourceCreatedDateTime: createdDateTime",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Timestamp that the this resource was used",
@@ -8956,7 +8956,7 @@
                                                                                                     "varName": "createdDateTime"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "CatoProcessResourceId: id",
+                                                                                                    "alias": "catoProcessResourceId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Unique Cato ID for this resource",
@@ -8985,9 +8985,9 @@
                                                                                                     "isDeprecated": false,
                                                                                                     "name": "imageFile",
                                                                                                     "path": "story.incident.CatoEndpoint.alerts.resources.CatoProcessResource.imageFile",
-                                                                                                    "requestStr": "$FileDetails:FileDetails ",
+                                                                                                    "requestStr": "$fileDetails:FileDetails ",
                                                                                                     "required": false,
-                                                                                                    "responseStr": "imageFile:$FileDetails ",
+                                                                                                    "responseStr": "imageFile:$fileDetails ",
                                                                                                     "type": {
                                                                                                         "definition": {
                                                                                                             "description": null,
@@ -9187,7 +9187,7 @@
                                                                                                         "name": "FileDetails",
                                                                                                         "non_null": false
                                                                                                     },
-                                                                                                    "varName": "FileDetails"
+                                                                                                    "varName": "fileDetails"
                                                                                                 },
                                                                                                 "processCommandLine": {
                                                                                                     "args": {},
@@ -9231,7 +9231,7 @@
                                                                                                     "varName": "processId"
                                                                                                 },
                                                                                                 "remediationStatus": {
-                                                                                                    "alias": "CatoProcessResourceRemediationStatus: remediationStatus",
+                                                                                                    "alias": "catoProcessResourceRemediationStatus: remediationStatus",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Enum for the remediation status associated with this resource",
@@ -9391,9 +9391,9 @@
                                                                                                     "isDeprecated": false,
                                                                                                     "name": "userAccount",
                                                                                                     "path": "story.incident.CatoEndpoint.alerts.resources.CatoProcessResource.userAccount",
-                                                                                                    "requestStr": "$EndpointUser:EndpointUser ",
+                                                                                                    "requestStr": "$endpointUser:EndpointUser ",
                                                                                                     "required": false,
-                                                                                                    "responseStr": "userAccount:$EndpointUser ",
+                                                                                                    "responseStr": "userAccount:$endpointUser ",
                                                                                                     "type": {
                                                                                                         "definition": {
                                                                                                             "description": null,
@@ -9452,7 +9452,7 @@
                                                                                                                     "enumValues": null,
                                                                                                                     "fields": {
                                                                                                                         "id": {
-                                                                                                                            "alias": "CatoEndpointUserId: id",
+                                                                                                                            "alias": "catoEndpointUserId: id",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": "ID for the user",
@@ -9474,7 +9474,7 @@
                                                                                                                             "varName": "id"
                                                                                                                         },
                                                                                                                         "name": {
-                                                                                                                            "alias": "CatoEndpointUserName: name",
+                                                                                                                            "alias": "catoEndpointUserName: name",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": "Username for the user whose activity generated the indication",
@@ -9547,7 +9547,7 @@
                                                                                                                             "varName": "domainName"
                                                                                                                         },
                                                                                                                         "id": {
-                                                                                                                            "alias": "MicrosoftEndpointUserId: id",
+                                                                                                                            "alias": "microsoftEndpointUserId: id",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": null,
@@ -9569,7 +9569,7 @@
                                                                                                                             "varName": "id"
                                                                                                                         },
                                                                                                                         "name": {
-                                                                                                                            "alias": "MicrosoftEndpointUserName: name",
+                                                                                                                            "alias": "microsoftEndpointUserName: name",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": null,
@@ -9646,7 +9646,7 @@
                                                                                                         "name": "EndpointUser",
                                                                                                         "non_null": false
                                                                                                     },
-                                                                                                    "varName": "EndpointUser"
+                                                                                                    "varName": "endpointUser"
                                                                                                 }
                                                                                             },
                                                                                             "inputFields": null,
@@ -9667,10 +9667,10 @@
                                                                                 "name": "CatoResource",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "CatoResource"
+                                                                            "varName": "catoResource"
                                                                         },
                                                                         "status": {
-                                                                            "alias": "RemediationStatusEnumStatus: status",
+                                                                            "alias": "remediationStatusEnumStatus: status",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Enum for the remediation status of the EPP alert",
@@ -9879,10 +9879,10 @@
                                                                 "name": "CatoEndpointAlert",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "CatoEndpointAlert"
+                                                            "varName": "catoEndpointAlert"
                                                         },
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Fields related to analysts research of the threat incident",
@@ -9890,9 +9890,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.CatoEndpoint.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -9996,9 +9996,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.CatoEndpoint.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -10078,7 +10078,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -10150,10 +10150,10 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "CatoEndpointConnectionType: connectionType",
+                                                            "alias": "catoEndpointConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "enum for the connection for this incident (ie. host, user)",
@@ -10204,7 +10204,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "CatoEndpointCriticality: criticality",
+                                                            "alias": "catoEndpointCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato's risk analysis of the story. Values are from 1 (low risk) to 10 (high risk)",
@@ -10225,7 +10225,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "CatoEndpointDescription: description",
+                                                            "alias": "catoEndpointDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Description of the threat",
@@ -10253,9 +10253,9 @@
                                                             "isDeprecated": false,
                                                             "name": "device",
                                                             "path": "story.incident.CatoEndpoint.device",
-                                                            "requestStr": "$CatoEndpointDeviceDetails:CatoEndpointDeviceDetails ",
+                                                            "requestStr": "$catoEndpointDeviceDetails:CatoEndpointDeviceDetails ",
                                                             "required": false,
-                                                            "responseStr": "device:$CatoEndpointDeviceDetails ",
+                                                            "responseStr": "device:$catoEndpointDeviceDetails ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -10310,9 +10310,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "loggedOnUsers",
                                                                             "path": "story.incident.CatoEndpoint.device.loggedOnUsers",
-                                                                            "requestStr": "$EndpointUser:[EndpointUser]! ",
+                                                                            "requestStr": "$endpointUser:[EndpointUser]! ",
                                                                             "required": true,
-                                                                            "responseStr": "loggedOnUsers:$EndpointUser ",
+                                                                            "responseStr": "loggedOnUsers:$endpointUser ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -10371,7 +10371,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "id": {
-                                                                                                    "alias": "CatoEndpointUserId: id",
+                                                                                                    "alias": "catoEndpointUserId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "ID for the user",
@@ -10393,7 +10393,7 @@
                                                                                                     "varName": "id"
                                                                                                 },
                                                                                                 "name": {
-                                                                                                    "alias": "CatoEndpointUserName: name",
+                                                                                                    "alias": "catoEndpointUserName: name",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Username for the user whose activity generated the indication",
@@ -10466,7 +10466,7 @@
                                                                                                     "varName": "domainName"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "MicrosoftEndpointUserId: id",
+                                                                                                    "alias": "microsoftEndpointUserId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -10488,7 +10488,7 @@
                                                                                                     "varName": "id"
                                                                                                 },
                                                                                                 "name": {
-                                                                                                    "alias": "MicrosoftEndpointUserName: name",
+                                                                                                    "alias": "microsoftEndpointUserName: name",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -10568,7 +10568,7 @@
                                                                                 "name": "EndpointUser",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "EndpointUser"
+                                                                            "varName": "endpointUser"
                                                                         },
                                                                         "macAddress": {
                                                                             "args": {},
@@ -10598,9 +10598,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "osDetails",
                                                                             "path": "story.incident.CatoEndpoint.device.osDetails",
-                                                                            "requestStr": "$OsDetails:OsDetails ",
+                                                                            "requestStr": "$osDetails:OsDetails ",
                                                                             "required": false,
-                                                                            "responseStr": "osDetails:$OsDetails ",
+                                                                            "responseStr": "osDetails:$osDetails ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -10681,7 +10681,7 @@
                                                                                 "name": "OsDetails",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "OsDetails"
+                                                                            "varName": "osDetails"
                                                                         }
                                                                     },
                                                                     "inputFields": null,
@@ -10697,10 +10697,10 @@
                                                                 "name": "CatoEndpointDeviceDetails",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "CatoEndpointDeviceDetails"
+                                                            "varName": "catoEndpointDeviceDetails"
                                                         },
                                                         "engineType": {
-                                                            "alias": "CatoEndpointEngineType: engineType",
+                                                            "alias": "catoEndpointEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "enum that shows XDR engine involved with the incident",
@@ -10763,7 +10763,7 @@
                                                             "varName": "engineType"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "CatoEndpointFirstSignal: firstSignal",
+                                                            "alias": "catoEndpointFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Timestamp for the first incident signal related to this story",
@@ -10785,7 +10785,7 @@
                                                             "varName": "firstSignal"
                                                         },
                                                         "id": {
-                                                            "alias": "CatoEndpointId: id",
+                                                            "alias": "catoEndpointId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "ID for the Endpoint Protection story",
@@ -10807,7 +10807,7 @@
                                                             "varName": "id"
                                                         },
                                                         "indication": {
-                                                            "alias": "CatoEndpointIndication: indication",
+                                                            "alias": "catoEndpointIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "An indication is a set of actions and behaviors for the Network or Security incident. Each producer has different indications.",
@@ -10829,7 +10829,7 @@
                                                             "varName": "indication"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "CatoEndpointLastSignal: lastSignal",
+                                                            "alias": "catoEndpointLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Timestamp for the last (most recent) incident signal related to this story",
@@ -10851,7 +10851,7 @@
                                                             "varName": "lastSignal"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "CatoEndpointPredictedThreatType: predictedThreatType",
+                                                            "alias": "catoEndpointPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -10872,7 +10872,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "CatoEndpointPredictedVerdict: predictedVerdict",
+                                                            "alias": "catoEndpointPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -10929,7 +10929,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "CatoEndpointProducer: producer",
+                                                            "alias": "catoEndpointProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "enum for the Producer (specific XDR engine or service) involved with the incident",
@@ -11017,7 +11017,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "CatoEndpointProducerName: producerName",
+                                                            "alias": "catoEndpointProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Full name of the Producer (specific XDR engine and service) involved with the incident",
@@ -11039,7 +11039,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "CatoEndpointQueryName: queryName",
+                                                            "alias": "catoEndpointQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "",
@@ -11060,7 +11060,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "CatoEndpointResearch: research",
+                                                            "alias": "catoEndpointResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "TRUE indicates that the story is currently being researched by Security Analysts",
@@ -11088,9 +11088,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.CatoEndpoint.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -11233,10 +11233,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato ID and name for the site",
@@ -11244,9 +11244,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.CatoEndpoint.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -11308,10 +11308,10 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteName": {
-                                                            "alias": "CatoEndpointSiteName: siteName",
+                                                            "alias": "catoEndpointSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Site name related to the story",
@@ -11332,7 +11332,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "CatoEndpointSource: source",
+                                                            "alias": "catoEndpointSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "IP address, name of device, or SDP user on your network involved in the story",
@@ -11353,7 +11353,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "CatoEndpointSourceIp: sourceIp",
+                                                            "alias": "catoEndpointSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Source IP address of the device in your network sending or receiving the flow",
@@ -11374,7 +11374,7 @@
                                                             "varName": "sourceIp"
                                                         },
                                                         "status": {
-                                                            "alias": "CatoEndpointStatus: status",
+                                                            "alias": "catoEndpointStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Enum for the status of this story (ie. Open, Closed, Monitoring)",
@@ -11443,7 +11443,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "CatoEndpointStoryDuration: storyDuration",
+                                                            "alias": "catoEndpointStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Amount of time since the story was opened (no value for closed stories)",
@@ -11464,7 +11464,7 @@
                                                             "varName": "storyDuration"
                                                         },
                                                         "ticket": {
-                                                            "alias": "CatoEndpointTicket: ticket",
+                                                            "alias": "catoEndpointTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "The ticket for this story",
@@ -11485,7 +11485,7 @@
                                                             "varName": "ticket"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato ID and name for the site",
@@ -11493,9 +11493,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.CatoEndpoint.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -11557,10 +11557,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "CatoEndpointVendor: vendor",
+                                                            "alias": "catoEndpointVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Vendor that identified the incident, such as Cato or Microsoft",
@@ -11623,16 +11623,16 @@
                                                             "isDeprecated": false,
                                                             "name": "alerts",
                                                             "path": "story.incident.MicrosoftEndpoint.alerts",
-                                                            "requestStr": "$MicrosoftDefenderEndpointAlert:[MicrosoftDefenderEndpointAlert]! ",
+                                                            "requestStr": "$microsoftDefenderEndpointAlert:[MicrosoftDefenderEndpointAlert]! ",
                                                             "required": true,
-                                                            "responseStr": "alerts:$MicrosoftDefenderEndpointAlert ",
+                                                            "responseStr": "alerts:$microsoftDefenderEndpointAlert ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
                                                                     "enumValues": null,
                                                                     "fields": {
                                                                         "activities": {
-                                                                            "alias": "MicrosoftActivityActivities: activities",
+                                                                            "alias": "microsoftActivityActivities: activities",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -11640,9 +11640,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "activities",
                                                                             "path": "story.incident.MicrosoftEndpoint.alerts.activities",
-                                                                            "requestStr": "$MicrosoftActivity:[MicrosoftActivity]! ",
+                                                                            "requestStr": "$microsoftActivity:[MicrosoftActivity]! ",
                                                                             "required": true,
-                                                                            "responseStr": "activities:$MicrosoftActivity ",
+                                                                            "responseStr": "activities:$microsoftActivity ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -11788,7 +11788,7 @@
                                                                                 "name": "MicrosoftActivity",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "MicrosoftActivity"
+                                                                            "varName": "microsoftActivity"
                                                                         },
                                                                         "alertWebUrl": {
                                                                             "args": {},
@@ -11831,7 +11831,7 @@
                                                                             "varName": "category"
                                                                         },
                                                                         "classification": {
-                                                                            "alias": "AlertClassificationEnumClassification: classification",
+                                                                            "alias": "alertClassificationEnumClassification: classification",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -12005,7 +12005,7 @@
                                                                             "varName": "destinationUrl"
                                                                         },
                                                                         "detectionSource": {
-                                                                            "alias": "DetectionSourceEnumDetectionSource: detectionSource",
+                                                                            "alias": "detectionSourceEnumDetectionSource: detectionSource",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -12134,7 +12134,7 @@
                                                                             "varName": "detectionSource"
                                                                         },
                                                                         "determination": {
-                                                                            "alias": "AlertDeterminationEnumDetermination: determination",
+                                                                            "alias": "alertDeterminationEnumDetermination: determination",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -12352,7 +12352,7 @@
                                                                             "varName": "localIp"
                                                                         },
                                                                         "mitreSubTechnique": {
-                                                                            "alias": "MitreMitreSubTechnique: mitreSubTechnique",
+                                                                            "alias": "mitreMitreSubTechnique: mitreSubTechnique",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -12360,9 +12360,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "mitreSubTechnique",
                                                                             "path": "story.incident.MicrosoftEndpoint.alerts.mitreSubTechnique",
-                                                                            "requestStr": "$Mitre:[Mitre]! ",
+                                                                            "requestStr": "$mitre:[Mitre]! ",
                                                                             "required": true,
-                                                                            "responseStr": "mitreSubTechnique:$Mitre ",
+                                                                            "responseStr": "mitreSubTechnique:$mitre ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -12425,10 +12425,10 @@
                                                                                 "name": "Mitre",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Mitre"
+                                                                            "varName": "mitre"
                                                                         },
                                                                         "mitreTechnique": {
-                                                                            "alias": "MitreMitreTechnique: mitreTechnique",
+                                                                            "alias": "mitreMitreTechnique: mitreTechnique",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -12436,9 +12436,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "mitreTechnique",
                                                                             "path": "story.incident.MicrosoftEndpoint.alerts.mitreTechnique",
-                                                                            "requestStr": "$Mitre:[Mitre]! ",
+                                                                            "requestStr": "$mitre:[Mitre]! ",
                                                                             "required": true,
-                                                                            "responseStr": "mitreTechnique:$Mitre ",
+                                                                            "responseStr": "mitreTechnique:$mitre ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -12501,7 +12501,7 @@
                                                                                 "name": "Mitre",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Mitre"
+                                                                            "varName": "mitre"
                                                                         },
                                                                         "ownerName": {
                                                                             "args": {},
@@ -12584,7 +12584,7 @@
                                                                             "varName": "resolvedDateTime"
                                                                         },
                                                                         "resources": {
-                                                                            "alias": "MicrosoftEndpointResourceResources: resources",
+                                                                            "alias": "microsoftEndpointResourceResources: resources",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -12592,9 +12592,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "resources",
                                                                             "path": "story.incident.MicrosoftEndpoint.alerts.resources",
-                                                                            "requestStr": "$MicrosoftEndpointResource:[MicrosoftEndpointResource]! ",
+                                                                            "requestStr": "$microsoftEndpointResource:[MicrosoftEndpointResource]! ",
                                                                             "required": true,
-                                                                            "responseStr": "resources:$MicrosoftEndpointResource ",
+                                                                            "responseStr": "resources:$microsoftEndpointResource ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -12642,7 +12642,7 @@
                                                                                             "varName": "id"
                                                                                         },
                                                                                         "remediationStatus": {
-                                                                                            "alias": "RemediationStatusEnumRemediationStatus: remediationStatus",
+                                                                                            "alias": "remediationStatusEnumRemediationStatus: remediationStatus",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -12815,7 +12815,7 @@
                                                                                             "varName": "remediationStatusDetails"
                                                                                         },
                                                                                         "roles": {
-                                                                                            "alias": "ResourceRoleEnumRoles: roles",
+                                                                                            "alias": "resourceRoleEnumRoles: roles",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -12958,7 +12958,7 @@
                                                                                             "varName": "tags"
                                                                                         },
                                                                                         "verdict": {
-                                                                                            "alias": "MsResourceVerdictEnumVerdict: verdict",
+                                                                                            "alias": "msResourceVerdictEnumVerdict: verdict",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -13025,7 +13025,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "createdDateTime": {
-                                                                                                    "alias": "MicrosoftFileResourceCreatedDateTime: createdDateTime",
+                                                                                                    "alias": "microsoftFileResourceCreatedDateTime: createdDateTime",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13103,9 +13103,9 @@
                                                                                                     "isDeprecated": false,
                                                                                                     "name": "fileDetails",
                                                                                                     "path": "story.incident.MicrosoftEndpoint.alerts.resources.MicrosoftFileResource.fileDetails",
-                                                                                                    "requestStr": "$FileDetails:FileDetails ",
+                                                                                                    "requestStr": "$fileDetails:FileDetails ",
                                                                                                     "required": false,
-                                                                                                    "responseStr": "fileDetails:$FileDetails ",
+                                                                                                    "responseStr": "fileDetails:$fileDetails ",
                                                                                                     "type": {
                                                                                                         "definition": {
                                                                                                             "description": null,
@@ -13305,10 +13305,10 @@
                                                                                                         "name": "FileDetails",
                                                                                                         "non_null": false
                                                                                                     },
-                                                                                                    "varName": "FileDetails"
+                                                                                                    "varName": "fileDetails"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "MicrosoftFileResourceId: id",
+                                                                                                    "alias": "microsoftFileResourceId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13330,7 +13330,7 @@
                                                                                                     "varName": "id"
                                                                                                 },
                                                                                                 "remediationStatus": {
-                                                                                                    "alias": "MicrosoftFileResourceRemediationStatus: remediationStatus",
+                                                                                                    "alias": "microsoftFileResourceRemediationStatus: remediationStatus",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13483,7 +13483,7 @@
                                                                                                     "varName": "remediationStatus"
                                                                                                 },
                                                                                                 "remediationStatusDetails": {
-                                                                                                    "alias": "MicrosoftFileResourceRemediationStatusDetails: remediationStatusDetails",
+                                                                                                    "alias": "microsoftFileResourceRemediationStatusDetails: remediationStatusDetails",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13504,7 +13504,7 @@
                                                                                                     "varName": "remediationStatusDetails"
                                                                                                 },
                                                                                                 "roles": {
-                                                                                                    "alias": "MicrosoftFileResourceRoles: roles",
+                                                                                                    "alias": "microsoftFileResourceRoles: roles",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13624,7 +13624,7 @@
                                                                                                     "varName": "roles"
                                                                                                 },
                                                                                                 "tags": {
-                                                                                                    "alias": "MicrosoftFileResourceTags: tags",
+                                                                                                    "alias": "microsoftFileResourceTags: tags",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13648,7 +13648,7 @@
                                                                                                     "varName": "tags"
                                                                                                 },
                                                                                                 "verdict": {
-                                                                                                    "alias": "MicrosoftFileResourceVerdict: verdict",
+                                                                                                    "alias": "microsoftFileResourceVerdict: verdict",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13716,7 +13716,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "createdDateTime": {
-                                                                                                    "alias": "MicrosoftProcessResourceCreatedDateTime: createdDateTime",
+                                                                                                    "alias": "microsoftProcessResourceCreatedDateTime: createdDateTime",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13737,7 +13737,7 @@
                                                                                                     "varName": "createdDateTime"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "MicrosoftProcessResourceId: id",
+                                                                                                    "alias": "microsoftProcessResourceId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -13766,9 +13766,9 @@
                                                                                                     "isDeprecated": false,
                                                                                                     "name": "imageFile",
                                                                                                     "path": "story.incident.MicrosoftEndpoint.alerts.resources.MicrosoftProcessResource.imageFile",
-                                                                                                    "requestStr": "$FileDetails:FileDetails ",
+                                                                                                    "requestStr": "$fileDetails:FileDetails ",
                                                                                                     "required": false,
-                                                                                                    "responseStr": "imageFile:$FileDetails ",
+                                                                                                    "responseStr": "imageFile:$fileDetails ",
                                                                                                     "type": {
                                                                                                         "definition": {
                                                                                                             "description": null,
@@ -13968,7 +13968,7 @@
                                                                                                         "name": "FileDetails",
                                                                                                         "non_null": false
                                                                                                     },
-                                                                                                    "varName": "FileDetails"
+                                                                                                    "varName": "fileDetails"
                                                                                                 },
                                                                                                 "processCommandLine": {
                                                                                                     "args": {},
@@ -14012,7 +14012,7 @@
                                                                                                     "varName": "processId"
                                                                                                 },
                                                                                                 "remediationStatus": {
-                                                                                                    "alias": "MicrosoftProcessResourceRemediationStatus: remediationStatus",
+                                                                                                    "alias": "microsoftProcessResourceRemediationStatus: remediationStatus",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14165,7 +14165,7 @@
                                                                                                     "varName": "remediationStatus"
                                                                                                 },
                                                                                                 "remediationStatusDetails": {
-                                                                                                    "alias": "MicrosoftProcessResourceRemediationStatusDetails: remediationStatusDetails",
+                                                                                                    "alias": "microsoftProcessResourceRemediationStatusDetails: remediationStatusDetails",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14186,7 +14186,7 @@
                                                                                                     "varName": "remediationStatusDetails"
                                                                                                 },
                                                                                                 "roles": {
-                                                                                                    "alias": "MicrosoftProcessResourceRoles: roles",
+                                                                                                    "alias": "microsoftProcessResourceRoles: roles",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14306,7 +14306,7 @@
                                                                                                     "varName": "roles"
                                                                                                 },
                                                                                                 "tags": {
-                                                                                                    "alias": "MicrosoftProcessResourceTags: tags",
+                                                                                                    "alias": "microsoftProcessResourceTags: tags",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14337,9 +14337,9 @@
                                                                                                     "isDeprecated": false,
                                                                                                     "name": "userAccount",
                                                                                                     "path": "story.incident.MicrosoftEndpoint.alerts.resources.MicrosoftProcessResource.userAccount",
-                                                                                                    "requestStr": "$EndpointUser:EndpointUser ",
+                                                                                                    "requestStr": "$endpointUser:EndpointUser ",
                                                                                                     "required": false,
-                                                                                                    "responseStr": "userAccount:$EndpointUser ",
+                                                                                                    "responseStr": "userAccount:$endpointUser ",
                                                                                                     "type": {
                                                                                                         "definition": {
                                                                                                             "description": null,
@@ -14398,7 +14398,7 @@
                                                                                                                     "enumValues": null,
                                                                                                                     "fields": {
                                                                                                                         "id": {
-                                                                                                                            "alias": "CatoEndpointUserId: id",
+                                                                                                                            "alias": "catoEndpointUserId: id",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": "ID for the user",
@@ -14420,7 +14420,7 @@
                                                                                                                             "varName": "id"
                                                                                                                         },
                                                                                                                         "name": {
-                                                                                                                            "alias": "CatoEndpointUserName: name",
+                                                                                                                            "alias": "catoEndpointUserName: name",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": "Username for the user whose activity generated the indication",
@@ -14493,7 +14493,7 @@
                                                                                                                             "varName": "domainName"
                                                                                                                         },
                                                                                                                         "id": {
-                                                                                                                            "alias": "MicrosoftEndpointUserId: id",
+                                                                                                                            "alias": "microsoftEndpointUserId: id",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": null,
@@ -14515,7 +14515,7 @@
                                                                                                                             "varName": "id"
                                                                                                                         },
                                                                                                                         "name": {
-                                                                                                                            "alias": "MicrosoftEndpointUserName: name",
+                                                                                                                            "alias": "microsoftEndpointUserName: name",
                                                                                                                             "args": {},
                                                                                                                             "deprecationReason": null,
                                                                                                                             "description": null,
@@ -14592,10 +14592,10 @@
                                                                                                         "name": "EndpointUser",
                                                                                                         "non_null": false
                                                                                                     },
-                                                                                                    "varName": "EndpointUser"
+                                                                                                    "varName": "endpointUser"
                                                                                                 },
                                                                                                 "verdict": {
-                                                                                                    "alias": "MicrosoftProcessResourceVerdict: verdict",
+                                                                                                    "alias": "microsoftProcessResourceVerdict: verdict",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14663,7 +14663,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "createdDateTime": {
-                                                                                                    "alias": "MicrosoftRegistryResourceCreatedDateTime: createdDateTime",
+                                                                                                    "alias": "microsoftRegistryResourceCreatedDateTime: createdDateTime",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14704,7 +14704,7 @@
                                                                                                     "varName": "hive"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "MicrosoftRegistryResourceId: id",
+                                                                                                    "alias": "microsoftRegistryResourceId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14746,7 +14746,7 @@
                                                                                                     "varName": "key"
                                                                                                 },
                                                                                                 "remediationStatus": {
-                                                                                                    "alias": "MicrosoftRegistryResourceRemediationStatus: remediationStatus",
+                                                                                                    "alias": "microsoftRegistryResourceRemediationStatus: remediationStatus",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14899,7 +14899,7 @@
                                                                                                     "varName": "remediationStatus"
                                                                                                 },
                                                                                                 "remediationStatusDetails": {
-                                                                                                    "alias": "MicrosoftRegistryResourceRemediationStatusDetails: remediationStatusDetails",
+                                                                                                    "alias": "microsoftRegistryResourceRemediationStatusDetails: remediationStatusDetails",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -14920,7 +14920,7 @@
                                                                                                     "varName": "remediationStatusDetails"
                                                                                                 },
                                                                                                 "roles": {
-                                                                                                    "alias": "MicrosoftRegistryResourceRoles: roles",
+                                                                                                    "alias": "microsoftRegistryResourceRoles: roles",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -15040,7 +15040,7 @@
                                                                                                     "varName": "roles"
                                                                                                 },
                                                                                                 "tags": {
-                                                                                                    "alias": "MicrosoftRegistryResourceTags: tags",
+                                                                                                    "alias": "microsoftRegistryResourceTags: tags",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -15124,7 +15124,7 @@
                                                                                                     "varName": "valueType"
                                                                                                 },
                                                                                                 "verdict": {
-                                                                                                    "alias": "MicrosoftRegistryResourceVerdict: verdict",
+                                                                                                    "alias": "microsoftRegistryResourceVerdict: verdict",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -15199,10 +15199,10 @@
                                                                                 "name": "MicrosoftEndpointResource",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "MicrosoftEndpointResource"
+                                                                            "varName": "microsoftEndpointResource"
                                                                         },
                                                                         "status": {
-                                                                            "alias": "MsAlertStatusStatus: status",
+                                                                            "alias": "msAlertStatusStatus: status",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -15349,10 +15349,10 @@
                                                                 "name": "MicrosoftDefenderEndpointAlert",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "MicrosoftDefenderEndpointAlert"
+                                                            "varName": "microsoftDefenderEndpointAlert"
                                                         },
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -15360,9 +15360,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.MicrosoftEndpoint.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -15466,9 +15466,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.MicrosoftEndpoint.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -15548,7 +15548,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -15620,10 +15620,10 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "MicrosoftEndpointConnectionType: connectionType",
+                                                            "alias": "microsoftEndpointConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -15674,7 +15674,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "MicrosoftEndpointCriticality: criticality",
+                                                            "alias": "microsoftEndpointCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -15695,7 +15695,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "MicrosoftEndpointDescription: description",
+                                                            "alias": "microsoftEndpointDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -15723,9 +15723,9 @@
                                                             "isDeprecated": false,
                                                             "name": "device",
                                                             "path": "story.incident.MicrosoftEndpoint.device",
-                                                            "requestStr": "$MicrosoftDeviceDetails:MicrosoftDeviceDetails ",
+                                                            "requestStr": "$microsoftDeviceDetails:MicrosoftDeviceDetails ",
                                                             "required": false,
-                                                            "responseStr": "device:$MicrosoftDeviceDetails ",
+                                                            "responseStr": "device:$microsoftDeviceDetails ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -15961,9 +15961,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "loggedOnUsers",
                                                                             "path": "story.incident.MicrosoftEndpoint.device.loggedOnUsers",
-                                                                            "requestStr": "$EndpointUser:[EndpointUser]! ",
+                                                                            "requestStr": "$endpointUser:[EndpointUser]! ",
                                                                             "required": true,
-                                                                            "responseStr": "loggedOnUsers:$EndpointUser ",
+                                                                            "responseStr": "loggedOnUsers:$endpointUser ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -16022,7 +16022,7 @@
                                                                                             "enumValues": null,
                                                                                             "fields": {
                                                                                                 "id": {
-                                                                                                    "alias": "CatoEndpointUserId: id",
+                                                                                                    "alias": "catoEndpointUserId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "ID for the user",
@@ -16044,7 +16044,7 @@
                                                                                                     "varName": "id"
                                                                                                 },
                                                                                                 "name": {
-                                                                                                    "alias": "CatoEndpointUserName: name",
+                                                                                                    "alias": "catoEndpointUserName: name",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": "Username for the user whose activity generated the indication",
@@ -16117,7 +16117,7 @@
                                                                                                     "varName": "domainName"
                                                                                                 },
                                                                                                 "id": {
-                                                                                                    "alias": "MicrosoftEndpointUserId: id",
+                                                                                                    "alias": "microsoftEndpointUserId: id",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -16139,7 +16139,7 @@
                                                                                                     "varName": "id"
                                                                                                 },
                                                                                                 "name": {
-                                                                                                    "alias": "MicrosoftEndpointUserName: name",
+                                                                                                    "alias": "microsoftEndpointUserName: name",
                                                                                                     "args": {},
                                                                                                     "deprecationReason": null,
                                                                                                     "description": null,
@@ -16219,7 +16219,7 @@
                                                                                 "name": "EndpointUser",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "EndpointUser"
+                                                                            "varName": "endpointUser"
                                                                         },
                                                                         "onboardingStatus": {
                                                                             "args": {},
@@ -16279,9 +16279,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "osDetails",
                                                                             "path": "story.incident.MicrosoftEndpoint.device.osDetails",
-                                                                            "requestStr": "$OsDetails:OsDetails ",
+                                                                            "requestStr": "$osDetails:OsDetails ",
                                                                             "required": false,
-                                                                            "responseStr": "osDetails:$OsDetails ",
+                                                                            "responseStr": "osDetails:$osDetails ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -16362,7 +16362,7 @@
                                                                                 "name": "OsDetails",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "OsDetails"
+                                                                            "varName": "osDetails"
                                                                         },
                                                                         "rbacGroup": {
                                                                             "args": {},
@@ -16372,9 +16372,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "rbacGroup",
                                                                             "path": "story.incident.MicrosoftEndpoint.device.rbacGroup",
-                                                                            "requestStr": "$RbacGroup:RbacGroup ",
+                                                                            "requestStr": "$rbacGroup:RbacGroup ",
                                                                             "required": false,
-                                                                            "responseStr": "rbacGroup:$RbacGroup ",
+                                                                            "responseStr": "rbacGroup:$rbacGroup ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -16435,7 +16435,7 @@
                                                                                 "name": "RbacGroup",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "RbacGroup"
+                                                                            "varName": "rbacGroup"
                                                                         }
                                                                     },
                                                                     "inputFields": null,
@@ -16451,10 +16451,10 @@
                                                                 "name": "MicrosoftDeviceDetails",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "MicrosoftDeviceDetails"
+                                                            "varName": "microsoftDeviceDetails"
                                                         },
                                                         "engineType": {
-                                                            "alias": "MicrosoftEndpointEngineType: engineType",
+                                                            "alias": "microsoftEndpointEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16517,7 +16517,7 @@
                                                             "varName": "engineType"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "MicrosoftEndpointFirstSignal: firstSignal",
+                                                            "alias": "microsoftEndpointFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16539,7 +16539,7 @@
                                                             "varName": "firstSignal"
                                                         },
                                                         "id": {
-                                                            "alias": "MicrosoftEndpointId: id",
+                                                            "alias": "microsoftEndpointId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16561,7 +16561,7 @@
                                                             "varName": "id"
                                                         },
                                                         "indication": {
-                                                            "alias": "MicrosoftEndpointIndication: indication",
+                                                            "alias": "microsoftEndpointIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16583,7 +16583,7 @@
                                                             "varName": "indication"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "MicrosoftEndpointLastSignal: lastSignal",
+                                                            "alias": "microsoftEndpointLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16605,7 +16605,7 @@
                                                             "varName": "lastSignal"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "MicrosoftEndpointPredictedThreatType: predictedThreatType",
+                                                            "alias": "microsoftEndpointPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16626,7 +16626,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "MicrosoftEndpointPredictedVerdict: predictedVerdict",
+                                                            "alias": "microsoftEndpointPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16683,7 +16683,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "MicrosoftEndpointProducer: producer",
+                                                            "alias": "microsoftEndpointProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16771,7 +16771,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "MicrosoftEndpointProducerName: producerName",
+                                                            "alias": "microsoftEndpointProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16793,7 +16793,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "MicrosoftEndpointQueryName: queryName",
+                                                            "alias": "microsoftEndpointQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16814,7 +16814,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "MicrosoftEndpointResearch: research",
+                                                            "alias": "microsoftEndpointResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16842,9 +16842,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.MicrosoftEndpoint.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -16987,10 +16987,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -16998,9 +16998,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.MicrosoftEndpoint.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -17062,10 +17062,10 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteName": {
-                                                            "alias": "MicrosoftEndpointSiteName: siteName",
+                                                            "alias": "microsoftEndpointSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17086,7 +17086,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "MicrosoftEndpointSource: source",
+                                                            "alias": "microsoftEndpointSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17107,7 +17107,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "MicrosoftEndpointSourceIp: sourceIp",
+                                                            "alias": "microsoftEndpointSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17128,7 +17128,7 @@
                                                             "varName": "sourceIp"
                                                         },
                                                         "status": {
-                                                            "alias": "MicrosoftEndpointStatus: status",
+                                                            "alias": "microsoftEndpointStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17197,7 +17197,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "MicrosoftEndpointStoryDuration: storyDuration",
+                                                            "alias": "microsoftEndpointStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17218,7 +17218,7 @@
                                                             "varName": "storyDuration"
                                                         },
                                                         "ticket": {
-                                                            "alias": "MicrosoftEndpointTicket: ticket",
+                                                            "alias": "microsoftEndpointTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17239,7 +17239,7 @@
                                                             "varName": "ticket"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17247,9 +17247,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.MicrosoftEndpoint.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -17311,10 +17311,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "MicrosoftEndpointVendor: vendor",
+                                                            "alias": "microsoftEndpointVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17390,7 +17390,7 @@
                                                             "varName": "acknowledged"
                                                         },
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17398,9 +17398,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.NetworkXDRIncident.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -17504,9 +17504,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.NetworkXDRIncident.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -17586,7 +17586,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -17658,7 +17658,7 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "bgpConnection": {
                                                             "args": {},
@@ -17668,9 +17668,9 @@
                                                             "isDeprecated": false,
                                                             "name": "bgpConnection",
                                                             "path": "story.incident.NetworkXDRIncident.bgpConnection",
-                                                            "requestStr": "$BGPConnection:BGPConnection ",
+                                                            "requestStr": "$bGPConnection:BGPConnection ",
                                                             "required": false,
-                                                            "responseStr": "bgpConnection:$BGPConnection ",
+                                                            "responseStr": "bgpConnection:$bGPConnection ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -17790,10 +17790,10 @@
                                                                 "name": "BGPConnection",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "BGPConnection"
+                                                            "varName": "bGPConnection"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "NetworkXDRIncidentConnectionType: connectionType",
+                                                            "alias": "networkXDRIncidentConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17844,7 +17844,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "NetworkXDRIncidentCriticality: criticality",
+                                                            "alias": "networkXDRIncidentCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17865,7 +17865,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "NetworkXDRIncidentDescription: description",
+                                                            "alias": "networkXDRIncidentDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17930,7 +17930,7 @@
                                                             "varName": "deviceConfigHaRole"
                                                         },
                                                         "engineType": {
-                                                            "alias": "NetworkXDRIncidentEngineType: engineType",
+                                                            "alias": "networkXDRIncidentEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -17993,7 +17993,7 @@
                                                             "varName": "engineType"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "NetworkXDRIncidentFirstSignal: firstSignal",
+                                                            "alias": "networkXDRIncidentFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -18035,7 +18035,7 @@
                                                             "varName": "hostIp"
                                                         },
                                                         "id": {
-                                                            "alias": "NetworkXDRIncidentId: id",
+                                                            "alias": "networkXDRIncidentId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -18064,9 +18064,9 @@
                                                             "isDeprecated": false,
                                                             "name": "ilmmDetails",
                                                             "path": "story.incident.NetworkXDRIncident.ilmmDetails",
-                                                            "requestStr": "$IlmmDetails:IlmmDetails ",
+                                                            "requestStr": "$ilmmDetails:IlmmDetails ",
                                                             "required": false,
-                                                            "responseStr": "ilmmDetails:$IlmmDetails ",
+                                                            "responseStr": "ilmmDetails:$ilmmDetails ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -18080,9 +18080,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "contacts",
                                                                             "path": "story.incident.NetworkXDRIncident.ilmmDetails.contacts",
-                                                                            "requestStr": "$IlmmContact:[IlmmContact] ",
+                                                                            "requestStr": "$ilmmContact:[IlmmContact] ",
                                                                             "required": false,
-                                                                            "responseStr": "contacts:$IlmmContact ",
+                                                                            "responseStr": "contacts:$ilmmContact ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -18164,7 +18164,7 @@
                                                                                 "name": "IlmmContact",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "IlmmContact"
+                                                                            "varName": "ilmmContact"
                                                                         },
                                                                         "ispDetails": {
                                                                             "args": {},
@@ -18174,9 +18174,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "ispDetails",
                                                                             "path": "story.incident.NetworkXDRIncident.ilmmDetails.ispDetails",
-                                                                            "requestStr": "$IlmmIspDetails:IlmmIspDetails ",
+                                                                            "requestStr": "$ilmmIspDetails:IlmmIspDetails ",
                                                                             "required": false,
-                                                                            "responseStr": "ispDetails:$IlmmIspDetails ",
+                                                                            "responseStr": "ispDetails:$ilmmIspDetails ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -18250,9 +18250,9 @@
                                                                                             "isDeprecated": false,
                                                                                             "name": "loaFile",
                                                                                             "path": "story.incident.NetworkXDRIncident.ilmmDetails.ispDetails.loaFile",
-                                                                                            "requestStr": "$IspLoaFile:IspLoaFile ",
+                                                                                            "requestStr": "$ispLoaFile:IspLoaFile ",
                                                                                             "required": false,
-                                                                                            "responseStr": "loaFile:$IspLoaFile ",
+                                                                                            "responseStr": "loaFile:$ispLoaFile ",
                                                                                             "type": {
                                                                                                 "definition": {
                                                                                                     "description": null,
@@ -18332,7 +18332,7 @@
                                                                                                 "name": "IspLoaFile",
                                                                                                 "non_null": false
                                                                                             },
-                                                                                            "varName": "IspLoaFile"
+                                                                                            "varName": "ispLoaFile"
                                                                                         },
                                                                                         "name": {
                                                                                             "args": {},
@@ -18408,7 +18408,7 @@
                                                                                 "name": "IlmmIspDetails",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "IlmmIspDetails"
+                                                                            "varName": "ilmmIspDetails"
                                                                         },
                                                                         "linkDetails": {
                                                                             "args": {},
@@ -18418,9 +18418,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "linkDetails",
                                                                             "path": "story.incident.NetworkXDRIncident.ilmmDetails.linkDetails",
-                                                                            "requestStr": "$IlmmLinkDetails:IlmmLinkDetails ",
+                                                                            "requestStr": "$ilmmLinkDetails:IlmmLinkDetails ",
                                                                             "required": false,
-                                                                            "responseStr": "linkDetails:$IlmmLinkDetails ",
+                                                                            "responseStr": "linkDetails:$ilmmLinkDetails ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -18596,7 +18596,7 @@
                                                                                 "name": "IlmmLinkDetails",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "IlmmLinkDetails"
+                                                                            "varName": "ilmmLinkDetails"
                                                                         }
                                                                     },
                                                                     "inputFields": null,
@@ -18612,10 +18612,10 @@
                                                                 "name": "IlmmDetails",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IlmmDetails"
+                                                            "varName": "ilmmDetails"
                                                         },
                                                         "indication": {
-                                                            "alias": "NetworkXDRIncidentIndication: indication",
+                                                            "alias": "networkXDRIncidentIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -18657,7 +18657,7 @@
                                                             "varName": "isp"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "NetworkXDRIncidentLastSignal: lastSignal",
+                                                            "alias": "networkXDRIncidentLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -18836,9 +18836,9 @@
                                                             "isDeprecated": false,
                                                             "name": "networkIncidentTimeline",
                                                             "path": "story.incident.NetworkXDRIncident.networkIncidentTimeline",
-                                                            "requestStr": "$NetworkTimelineEvent:[NetworkTimelineEvent]! ",
+                                                            "requestStr": "$networkTimelineEvent:[NetworkTimelineEvent]! ",
                                                             "required": true,
-                                                            "responseStr": "networkIncidentTimeline:$NetworkTimelineEvent ",
+                                                            "responseStr": "networkIncidentTimeline:$networkTimelineEvent ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -18865,7 +18865,7 @@
                                                                             "varName": "acknowledged"
                                                                         },
                                                                         "bgpConnection": {
-                                                                            "alias": "BGPConnectionBgpConnection: bgpConnection",
+                                                                            "alias": "bGPConnectionBgpConnection: bgpConnection",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -18873,9 +18873,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "bgpConnection",
                                                                             "path": "story.incident.NetworkXDRIncident.networkIncidentTimeline.bgpConnection",
-                                                                            "requestStr": "$BGPConnection:BGPConnection ",
+                                                                            "requestStr": "$bGPConnection:BGPConnection ",
                                                                             "required": false,
-                                                                            "responseStr": "bgpConnection:$BGPConnection ",
+                                                                            "responseStr": "bgpConnection:$bGPConnection ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -18995,7 +18995,7 @@
                                                                                 "name": "BGPConnection",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "BGPConnection"
+                                                                            "varName": "bGPConnection"
                                                                         },
                                                                         "created": {
                                                                             "args": {},
@@ -19039,7 +19039,7 @@
                                                                             "varName": "description"
                                                                         },
                                                                         "deviceConfigHaRole": {
-                                                                            "alias": "DeviceConfigHaRoleEnumDeviceConfigHaRole: deviceConfigHaRole",
+                                                                            "alias": "deviceConfigHaRoleEnumDeviceConfigHaRole: deviceConfigHaRole",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19084,7 +19084,7 @@
                                                                             "varName": "deviceConfigHaRole"
                                                                         },
                                                                         "deviceHaRoleState": {
-                                                                            "alias": "DeviceHaRoleStateEnumDeviceHaRoleState: deviceHaRoleState",
+                                                                            "alias": "deviceHaRoleStateEnumDeviceHaRoleState: deviceHaRoleState",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19152,7 +19152,7 @@
                                                                             "varName": "eventIds"
                                                                         },
                                                                         "eventType": {
-                                                                            "alias": "NetworkXDREventTypeEnumEventType: eventType",
+                                                                            "alias": "networkXDREventTypeEnumEventType: eventType",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19283,7 +19283,7 @@
                                                                             "varName": "linkConfigBandwidth"
                                                                         },
                                                                         "linkConfigPrecedence": {
-                                                                            "alias": "LinkConfigPrecedenceEnumLinkConfigPrecedence: linkConfigPrecedence",
+                                                                            "alias": "linkConfigPrecedenceEnumLinkConfigPrecedence: linkConfigPrecedence",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19374,7 +19374,7 @@
                                                                             "varName": "linkName"
                                                                         },
                                                                         "linkQualityIssue": {
-                                                                            "alias": "LinkQualityIssueLinkQualityIssue: linkQualityIssue",
+                                                                            "alias": "linkQualityIssueLinkQualityIssue: linkQualityIssue",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19382,9 +19382,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "linkQualityIssue",
                                                                             "path": "story.incident.NetworkXDRIncident.networkIncidentTimeline.linkQualityIssue",
-                                                                            "requestStr": "$LinkQualityIssue:LinkQualityIssue ",
+                                                                            "requestStr": "$linkQualityIssue:LinkQualityIssue ",
                                                                             "required": false,
-                                                                            "responseStr": "linkQualityIssue:$LinkQualityIssue ",
+                                                                            "responseStr": "linkQualityIssue:$linkQualityIssue ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -19544,10 +19544,10 @@
                                                                                 "name": "LinkQualityIssue",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "LinkQualityIssue"
+                                                                            "varName": "linkQualityIssue"
                                                                         },
                                                                         "linkStatus": {
-                                                                            "alias": "LinkStatusEnumLinkStatus: linkStatus",
+                                                                            "alias": "linkStatusEnumLinkStatus: linkStatus",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19612,7 +19612,7 @@
                                                                             "varName": "muted"
                                                                         },
                                                                         "networkEventSource": {
-                                                                            "alias": "NetworkEventSourceEnumNetworkEventSource: networkEventSource",
+                                                                            "alias": "networkEventSourceEnumNetworkEventSource: networkEventSource",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -19804,7 +19804,7 @@
                                                                 "name": "NetworkTimelineEvent",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "NetworkTimelineEvent"
+                                                            "varName": "networkTimelineEvent"
                                                         },
                                                         "occurrences": {
                                                             "args": {},
@@ -19847,7 +19847,7 @@
                                                             "varName": "pop"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "NetworkXDRIncidentPredictedThreatType: predictedThreatType",
+                                                            "alias": "networkXDRIncidentPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -19868,7 +19868,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "NetworkXDRIncidentPredictedVerdict: predictedVerdict",
+                                                            "alias": "networkXDRIncidentPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -19925,7 +19925,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "NetworkXDRIncidentProducer: producer",
+                                                            "alias": "networkXDRIncidentProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20013,7 +20013,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "NetworkXDRIncidentProducerName: producerName",
+                                                            "alias": "networkXDRIncidentProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20035,7 +20035,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "NetworkXDRIncidentQueryName: queryName",
+                                                            "alias": "networkXDRIncidentQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20056,7 +20056,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "NetworkXDRIncidentResearch: research",
+                                                            "alias": "networkXDRIncidentResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20104,9 +20104,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.NetworkXDRIncident.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -20249,10 +20249,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20260,9 +20260,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.NetworkXDRIncident.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -20324,7 +20324,7 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteConfigLocation": {
                                                             "args": {},
@@ -20367,7 +20367,7 @@
                                                             "varName": "siteConnectionType"
                                                         },
                                                         "siteName": {
-                                                            "alias": "NetworkXDRIncidentSiteName: siteName",
+                                                            "alias": "networkXDRIncidentSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20389,7 +20389,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "NetworkXDRIncidentSource: source",
+                                                            "alias": "networkXDRIncidentSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20410,7 +20410,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "NetworkXDRIncidentSourceIp: sourceIp",
+                                                            "alias": "networkXDRIncidentSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20431,7 +20431,7 @@
                                                             "varName": "sourceIp"
                                                         },
                                                         "status": {
-                                                            "alias": "NetworkXDRIncidentStatus: status",
+                                                            "alias": "networkXDRIncidentStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20500,7 +20500,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "NetworkXDRIncidentStoryDuration: storyDuration",
+                                                            "alias": "networkXDRIncidentStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20542,7 +20542,7 @@
                                                             "varName": "storyType"
                                                         },
                                                         "ticket": {
-                                                            "alias": "NetworkXDRIncidentTicket: ticket",
+                                                            "alias": "networkXDRIncidentTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20563,7 +20563,7 @@
                                                             "varName": "ticket"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20571,9 +20571,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.NetworkXDRIncident.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -20635,10 +20635,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "NetworkXDRIncidentVendor: vendor",
+                                                            "alias": "networkXDRIncidentVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -20694,7 +20694,7 @@
                                                     "enumValues": null,
                                                     "fields": {
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Fields related to analysts research of the threat incident",
@@ -20702,9 +20702,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.Threat.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -20808,9 +20808,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.Threat.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -20890,7 +20890,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -20962,7 +20962,7 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "clientClass": {
                                                             "args": {},
@@ -20988,7 +20988,7 @@
                                                             "varName": "clientClass"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "ThreatConnectionType: connectionType",
+                                                            "alias": "threatConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Enum for the connection for this incident (ie. site, host, user)",
@@ -21039,7 +21039,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "ThreatCriticality: criticality",
+                                                            "alias": "threatCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato's risk analysis of the story. Values are from 1 (low risk) to 10 (high risk)",
@@ -21060,7 +21060,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "ThreatDescription: description",
+                                                            "alias": "threatDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Description of the threat",
@@ -21121,7 +21121,7 @@
                                                             "varName": "direction"
                                                         },
                                                         "engineType": {
-                                                            "alias": "ThreatEngineType: engineType",
+                                                            "alias": "threatEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "XDR engine involved with the incident",
@@ -21191,9 +21191,9 @@
                                                             "isDeprecated": false,
                                                             "name": "events",
                                                             "path": "story.incident.Threat.events",
-                                                            "requestStr": "$Event:[Event] ",
+                                                            "requestStr": "$event:[Event] ",
                                                             "required": false,
-                                                            "responseStr": "events:$Event ",
+                                                            "responseStr": "events:$event ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -21320,7 +21320,7 @@
                                                                             "varName": "ruleId"
                                                                         },
                                                                         "scanResult": {
-                                                                            "alias": "ScanResultScanResult: scanResult",
+                                                                            "alias": "scanResultScanResult: scanResult",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -21510,10 +21510,10 @@
                                                                 "name": "Event",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Event"
+                                                            "varName": "event"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "ThreatFirstSignal: firstSignal",
+                                                            "alias": "threatFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Timestamp for the first incident signal related to this story",
@@ -21542,9 +21542,9 @@
                                                             "isDeprecated": false,
                                                             "name": "flows",
                                                             "path": "story.incident.Threat.flows",
-                                                            "requestStr": "$IncidentFlow:[IncidentFlow] ",
+                                                            "requestStr": "$incidentFlow:[IncidentFlow] ",
                                                             "required": false,
-                                                            "responseStr": "flows:$IncidentFlow ",
+                                                            "responseStr": "flows:$incidentFlow ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -22046,7 +22046,7 @@
                                                                 "name": "IncidentFlow",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentFlow"
+                                                            "varName": "incidentFlow"
                                                         },
                                                         "flowsCardinality": {
                                                             "args": {},
@@ -22069,7 +22069,7 @@
                                                             "varName": "flowsCardinality"
                                                         },
                                                         "id": {
-                                                            "alias": "ThreatId: id",
+                                                            "alias": "threatId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Unique Cato ID for this threat",
@@ -22091,7 +22091,7 @@
                                                             "varName": "id"
                                                         },
                                                         "indication": {
-                                                            "alias": "ThreatIndication: indication",
+                                                            "alias": "threatIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "An indication is a set of actions and behaviors for the Network or Security incident. Each producer has different indications.",
@@ -22113,7 +22113,7 @@
                                                             "varName": "indication"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "ThreatLastSignal: lastSignal",
+                                                            "alias": "threatLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Timestamp for the first incident signal related to this story",
@@ -22182,9 +22182,9 @@
                                                             "isDeprecated": false,
                                                             "name": "mitres",
                                                             "path": "story.incident.Threat.mitres",
-                                                            "requestStr": "$Mitre:[Mitre] ",
+                                                            "requestStr": "$mitre:[Mitre] ",
                                                             "required": false,
-                                                            "responseStr": "mitres:$Mitre ",
+                                                            "responseStr": "mitres:$mitre ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -22246,7 +22246,7 @@
                                                                 "name": "Mitre",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Mitre"
+                                                            "varName": "mitre"
                                                         },
                                                         "os": {
                                                             "args": {},
@@ -22269,7 +22269,7 @@
                                                             "varName": "os"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "ThreatPredictedThreatType: predictedThreatType",
+                                                            "alias": "threatPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato\u2019s predicted threat type for the story",
@@ -22290,7 +22290,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "ThreatPredictedVerdict: predictedVerdict",
+                                                            "alias": "threatPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Enum for Cato\u2019s predicted verdict of the story (ie. Malicious, Benign)",
@@ -22347,7 +22347,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "ThreatProducer: producer",
+                                                            "alias": "threatProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Enum for the Producer (specific XDR engine and service) involved with the incident",
@@ -22435,7 +22435,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "ThreatProducerName: producerName",
+                                                            "alias": "threatProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Full name of the Producer (specific XDR engine and service) involved with the incident",
@@ -22457,7 +22457,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "ThreatQueryName: queryName",
+                                                            "alias": "threatQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Category for the indication ID related to the story",
@@ -22478,7 +22478,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "ThreatResearch: research",
+                                                            "alias": "threatResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "The value is TRUE when the story is currently being researched by Security Analysts",
@@ -22580,9 +22580,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.Threat.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -22725,10 +22725,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato ID and name for the site",
@@ -22736,9 +22736,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.Threat.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -22800,10 +22800,10 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteName": {
-                                                            "alias": "ThreatSiteName: siteName",
+                                                            "alias": "threatSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Site name related to the story",
@@ -22824,7 +22824,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "ThreatSource: source",
+                                                            "alias": "threatSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "IP address, name of device, or SDP user on your network involved in the story",
@@ -22845,7 +22845,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "ThreatSourceIp: sourceIp",
+                                                            "alias": "threatSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "The source IP address of the device in your network sending or receiving the flow",
@@ -22886,7 +22886,7 @@
                                                             "varName": "srcSiteId"
                                                         },
                                                         "status": {
-                                                            "alias": "ThreatStatus: status",
+                                                            "alias": "threatStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Enum for the status of this story (ie. Open, Closed, Monitoring)",
@@ -22955,7 +22955,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "ThreatStoryDuration: storyDuration",
+                                                            "alias": "threatStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Amount of time since the story was opened (no value for closed stories)",
@@ -22983,9 +22983,9 @@
                                                             "isDeprecated": false,
                                                             "name": "targets",
                                                             "path": "story.incident.Threat.targets",
-                                                            "requestStr": "$IncidentTargetRep:[IncidentTargetRep]! ",
+                                                            "requestStr": "$incidentTargetRep:[IncidentTargetRep]! ",
                                                             "required": true,
-                                                            "responseStr": "targets:$IncidentTargetRep ",
+                                                            "responseStr": "targets:$incidentTargetRep ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -23112,7 +23112,7 @@
                                                                             "varName": "engines"
                                                                         },
                                                                         "eventData": {
-                                                                            "alias": "EventEventData: eventData",
+                                                                            "alias": "eventEventData: eventData",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -23120,9 +23120,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "eventData",
                                                                             "path": "story.incident.Threat.targets.eventData",
-                                                                            "requestStr": "$Event:[Event]! ",
+                                                                            "requestStr": "$event:[Event]! ",
                                                                             "required": true,
-                                                                            "responseStr": "eventData:$Event ",
+                                                                            "responseStr": "eventData:$event ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -23249,7 +23249,7 @@
                                                                                             "varName": "ruleId"
                                                                                         },
                                                                                         "scanResult": {
-                                                                                            "alias": "ScanResultScanResult: scanResult",
+                                                                                            "alias": "scanResultScanResult: scanResult",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -23440,7 +23440,7 @@
                                                                                 "name": "Event",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Event"
+                                                                            "varName": "event"
                                                                         },
                                                                         "infectionSource": {
                                                                             "args": {},
@@ -23543,7 +23543,7 @@
                                                                             "varName": "threatReference"
                                                                         },
                                                                         "type": {
-                                                                            "alias": "TargetTypeType: type",
+                                                                            "alias": "targetTypeType: type",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -23616,10 +23616,10 @@
                                                                 "name": "IncidentTargetRep",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTargetRep"
+                                                            "varName": "incidentTargetRep"
                                                         },
                                                         "ticket": {
-                                                            "alias": "ThreatTicket: ticket",
+                                                            "alias": "threatTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "The ticket an analyst created for this story",
@@ -23647,9 +23647,9 @@
                                                             "isDeprecated": false,
                                                             "name": "timeSeries",
                                                             "path": "story.incident.Threat.timeSeries",
-                                                            "requestStr": "$IncidentTimeseries:[IncidentTimeseries] ",
+                                                            "requestStr": "$incidentTimeseries:[IncidentTimeseries] ",
                                                             "required": false,
-                                                            "responseStr": "timeSeries:$IncidentTimeseries ",
+                                                            "responseStr": "timeSeries:$incidentTimeseries ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -23720,7 +23720,7 @@
                                                                             "varName": "info"
                                                                         },
                                                                         "key": {
-                                                                            "alias": "TimeseriesKeyKey: key",
+                                                                            "alias": "timeseriesKeyKey: key",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -23728,9 +23728,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "key",
                                                                             "path": "story.incident.Threat.timeSeries.key",
-                                                                            "requestStr": "$TimeseriesKey:TimeseriesKey ",
+                                                                            "requestStr": "$timeseriesKey:TimeseriesKey ",
                                                                             "required": false,
-                                                                            "responseStr": "key:$TimeseriesKey ",
+                                                                            "responseStr": "key:$timeseriesKey ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -23744,9 +23744,9 @@
                                                                                             "isDeprecated": false,
                                                                                             "name": "dimensions",
                                                                                             "path": "story.incident.Threat.timeSeries.key.dimensions",
-                                                                                            "requestStr": "$DimensionKey:[DimensionKey] ",
+                                                                                            "requestStr": "$dimensionKey:[DimensionKey] ",
                                                                                             "required": false,
-                                                                                            "responseStr": "dimensions:$DimensionKey ",
+                                                                                            "responseStr": "dimensions:$dimensionKey ",
                                                                                             "type": {
                                                                                                 "definition": {
                                                                                                     "description": null,
@@ -23809,7 +23809,7 @@
                                                                                                 "name": "DimensionKey",
                                                                                                 "non_null": false
                                                                                             },
-                                                                                            "varName": "DimensionKey"
+                                                                                            "varName": "dimensionKey"
                                                                                         },
                                                                                         "measureFieldName": {
                                                                                             "args": {},
@@ -23846,7 +23846,7 @@
                                                                                 "name": "TimeseriesKey",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "TimeseriesKey"
+                                                                            "varName": "timeseriesKey"
                                                                         },
                                                                         "label": {
                                                                             "args": {},
@@ -23890,7 +23890,7 @@
                                                                             "varName": "sum"
                                                                         },
                                                                         "units": {
-                                                                            "alias": "UnitTypeUnits: units",
+                                                                            "alias": "unitTypeUnits: units",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Identifies what unit of data this timeseries represents. Note that toRate is only available for particular types\nof data to make sense.",
@@ -24004,10 +24004,10 @@
                                                                 "name": "IncidentTimeseries",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTimeseries"
+                                                            "varName": "incidentTimeseries"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Cato ID and name for the user",
@@ -24015,9 +24015,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.Threat.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -24079,10 +24079,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "ThreatVendor: vendor",
+                                                            "alias": "threatVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": "Vendor that identified the incident, such as Cato or Microsoft",
@@ -24138,7 +24138,7 @@
                                                     "enumValues": null,
                                                     "fields": {
                                                         "analystFeedback": {
-                                                            "alias": "AnalystFeedback: analystFeedback",
+                                                            "alias": "analystFeedback: analystFeedback",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -24146,9 +24146,9 @@
                                                             "isDeprecated": false,
                                                             "name": "analystFeedback",
                                                             "path": "story.incident.ThreatPrevention.analystFeedback",
-                                                            "requestStr": "$AnalystFeedback:AnalystFeedback ",
+                                                            "requestStr": "$analystFeedback:AnalystFeedback ",
                                                             "required": false,
-                                                            "responseStr": "analystFeedback:$AnalystFeedback ",
+                                                            "responseStr": "analystFeedback:$analystFeedback ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -24252,9 +24252,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "threatType",
                                                                             "path": "story.incident.ThreatPrevention.analystFeedback.threatType",
-                                                                            "requestStr": "$AnalystFeedbackThreatType:AnalystFeedbackThreatType ",
+                                                                            "requestStr": "$analystFeedbackThreatType:AnalystFeedbackThreatType ",
                                                                             "required": false,
-                                                                            "responseStr": "threatType:$AnalystFeedbackThreatType ",
+                                                                            "responseStr": "threatType:$analystFeedbackThreatType ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -24334,7 +24334,7 @@
                                                                                 "name": "AnalystFeedbackThreatType",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "AnalystFeedbackThreatType"
+                                                                            "varName": "analystFeedbackThreatType"
                                                                         },
                                                                         "verdict": {
                                                                             "args": {},
@@ -24406,7 +24406,7 @@
                                                                 "name": "AnalystFeedback",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "AnalystFeedback"
+                                                            "varName": "analystFeedback"
                                                         },
                                                         "clientClass": {
                                                             "args": {},
@@ -24432,7 +24432,7 @@
                                                             "varName": "clientClass"
                                                         },
                                                         "connectionType": {
-                                                            "alias": "ThreatPreventionConnectionType: connectionType",
+                                                            "alias": "threatPreventionConnectionType: connectionType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -24483,7 +24483,7 @@
                                                             "varName": "connectionType"
                                                         },
                                                         "criticality": {
-                                                            "alias": "ThreatPreventionCriticality: criticality",
+                                                            "alias": "threatPreventionCriticality: criticality",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -24504,7 +24504,7 @@
                                                             "varName": "criticality"
                                                         },
                                                         "description": {
-                                                            "alias": "ThreatPreventionDescription: description",
+                                                            "alias": "threatPreventionDescription: description",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -24565,7 +24565,7 @@
                                                             "varName": "direction"
                                                         },
                                                         "engineType": {
-                                                            "alias": "ThreatPreventionEngineType: engineType",
+                                                            "alias": "threatPreventionEngineType: engineType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -24635,9 +24635,9 @@
                                                             "isDeprecated": false,
                                                             "name": "events",
                                                             "path": "story.incident.ThreatPrevention.events",
-                                                            "requestStr": "$Event:[Event] ",
+                                                            "requestStr": "$event:[Event] ",
                                                             "required": false,
-                                                            "responseStr": "events:$Event ",
+                                                            "responseStr": "events:$event ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -24764,7 +24764,7 @@
                                                                             "varName": "ruleId"
                                                                         },
                                                                         "scanResult": {
-                                                                            "alias": "ScanResultScanResult: scanResult",
+                                                                            "alias": "scanResultScanResult: scanResult",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -24954,10 +24954,10 @@
                                                                 "name": "Event",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Event"
+                                                            "varName": "event"
                                                         },
                                                         "firstSignal": {
-                                                            "alias": "ThreatPreventionFirstSignal: firstSignal",
+                                                            "alias": "threatPreventionFirstSignal: firstSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -24999,7 +24999,7 @@
                                                             "varName": "flowsCardinality"
                                                         },
                                                         "id": {
-                                                            "alias": "ThreatPreventionId: id",
+                                                            "alias": "threatPreventionId: id",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25021,7 +25021,7 @@
                                                             "varName": "id"
                                                         },
                                                         "indication": {
-                                                            "alias": "ThreatPreventionIndication: indication",
+                                                            "alias": "threatPreventionIndication: indication",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25043,7 +25043,7 @@
                                                             "varName": "indication"
                                                         },
                                                         "lastSignal": {
-                                                            "alias": "ThreatPreventionLastSignal: lastSignal",
+                                                            "alias": "threatPreventionLastSignal: lastSignal",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25112,9 +25112,9 @@
                                                             "isDeprecated": false,
                                                             "name": "mitres",
                                                             "path": "story.incident.ThreatPrevention.mitres",
-                                                            "requestStr": "$Mitre:[Mitre] ",
+                                                            "requestStr": "$mitre:[Mitre] ",
                                                             "required": false,
-                                                            "responseStr": "mitres:$Mitre ",
+                                                            "responseStr": "mitres:$mitre ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -25176,7 +25176,7 @@
                                                                 "name": "Mitre",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "Mitre"
+                                                            "varName": "mitre"
                                                         },
                                                         "os": {
                                                             "args": {},
@@ -25199,7 +25199,7 @@
                                                             "varName": "os"
                                                         },
                                                         "predictedThreatType": {
-                                                            "alias": "ThreatPreventionPredictedThreatType: predictedThreatType",
+                                                            "alias": "threatPreventionPredictedThreatType: predictedThreatType",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25220,7 +25220,7 @@
                                                             "varName": "predictedThreatType"
                                                         },
                                                         "predictedVerdict": {
-                                                            "alias": "ThreatPreventionPredictedVerdict: predictedVerdict",
+                                                            "alias": "threatPreventionPredictedVerdict: predictedVerdict",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25277,7 +25277,7 @@
                                                             "varName": "predictedVerdict"
                                                         },
                                                         "producer": {
-                                                            "alias": "ThreatPreventionProducer: producer",
+                                                            "alias": "threatPreventionProducer: producer",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25365,7 +25365,7 @@
                                                             "varName": "producer"
                                                         },
                                                         "producerName": {
-                                                            "alias": "ThreatPreventionProducerName: producerName",
+                                                            "alias": "threatPreventionProducerName: producerName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25387,7 +25387,7 @@
                                                             "varName": "producerName"
                                                         },
                                                         "queryName": {
-                                                            "alias": "ThreatPreventionQueryName: queryName",
+                                                            "alias": "threatPreventionQueryName: queryName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25408,7 +25408,7 @@
                                                             "varName": "queryName"
                                                         },
                                                         "research": {
-                                                            "alias": "ThreatPreventionResearch: research",
+                                                            "alias": "threatPreventionResearch: research",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25510,9 +25510,9 @@
                                                             "isDeprecated": false,
                                                             "name": "similarStoriesData",
                                                             "path": "story.incident.ThreatPrevention.similarStoriesData",
-                                                            "requestStr": "$SimilarStoryData:[SimilarStoryData]! ",
+                                                            "requestStr": "$similarStoryData:[SimilarStoryData]! ",
                                                             "required": true,
-                                                            "responseStr": "similarStoriesData:$SimilarStoryData ",
+                                                            "responseStr": "similarStoriesData:$similarStoryData ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -25655,10 +25655,10 @@
                                                                 "name": "SimilarStoryData",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SimilarStoryData"
+                                                            "varName": "similarStoryData"
                                                         },
                                                         "site": {
-                                                            "alias": "SiteRef: site",
+                                                            "alias": "siteRef: site",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25666,9 +25666,9 @@
                                                             "isDeprecated": false,
                                                             "name": "site",
                                                             "path": "story.incident.ThreatPrevention.site",
-                                                            "requestStr": "$SiteRef:SiteRef ",
+                                                            "requestStr": "$siteRef:SiteRef ",
                                                             "required": false,
-                                                            "responseStr": "site:$SiteRef ",
+                                                            "responseStr": "site:$siteRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -25730,10 +25730,10 @@
                                                                 "name": "SiteRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "SiteRef"
+                                                            "varName": "siteRef"
                                                         },
                                                         "siteName": {
-                                                            "alias": "ThreatPreventionSiteName: siteName",
+                                                            "alias": "threatPreventionSiteName: siteName",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25754,7 +25754,7 @@
                                                             "varName": "siteName"
                                                         },
                                                         "source": {
-                                                            "alias": "ThreatPreventionSource: source",
+                                                            "alias": "threatPreventionSource: source",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25775,7 +25775,7 @@
                                                             "varName": "source"
                                                         },
                                                         "sourceIp": {
-                                                            "alias": "ThreatPreventionSourceIp: sourceIp",
+                                                            "alias": "threatPreventionSourceIp: sourceIp",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25816,7 +25816,7 @@
                                                             "varName": "srcSiteId"
                                                         },
                                                         "status": {
-                                                            "alias": "ThreatPreventionStatus: status",
+                                                            "alias": "threatPreventionStatus: status",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25885,7 +25885,7 @@
                                                             "varName": "status"
                                                         },
                                                         "storyDuration": {
-                                                            "alias": "ThreatPreventionStoryDuration: storyDuration",
+                                                            "alias": "threatPreventionStoryDuration: storyDuration",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -25913,9 +25913,9 @@
                                                             "isDeprecated": false,
                                                             "name": "targets",
                                                             "path": "story.incident.ThreatPrevention.targets",
-                                                            "requestStr": "$IncidentTargetRep:[IncidentTargetRep]! ",
+                                                            "requestStr": "$incidentTargetRep:[IncidentTargetRep]! ",
                                                             "required": true,
-                                                            "responseStr": "targets:$IncidentTargetRep ",
+                                                            "responseStr": "targets:$incidentTargetRep ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -26042,7 +26042,7 @@
                                                                             "varName": "engines"
                                                                         },
                                                                         "eventData": {
-                                                                            "alias": "EventEventData: eventData",
+                                                                            "alias": "eventEventData: eventData",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -26050,9 +26050,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "eventData",
                                                                             "path": "story.incident.ThreatPrevention.targets.eventData",
-                                                                            "requestStr": "$Event:[Event]! ",
+                                                                            "requestStr": "$event:[Event]! ",
                                                                             "required": true,
-                                                                            "responseStr": "eventData:$Event ",
+                                                                            "responseStr": "eventData:$event ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -26179,7 +26179,7 @@
                                                                                             "varName": "ruleId"
                                                                                         },
                                                                                         "scanResult": {
-                                                                                            "alias": "ScanResultScanResult: scanResult",
+                                                                                            "alias": "scanResultScanResult: scanResult",
                                                                                             "args": {},
                                                                                             "deprecationReason": null,
                                                                                             "description": null,
@@ -26370,7 +26370,7 @@
                                                                                 "name": "Event",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "Event"
+                                                                            "varName": "event"
                                                                         },
                                                                         "infectionSource": {
                                                                             "args": {},
@@ -26473,7 +26473,7 @@
                                                                             "varName": "threatReference"
                                                                         },
                                                                         "type": {
-                                                                            "alias": "TargetTypeType: type",
+                                                                            "alias": "targetTypeType: type",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -26546,7 +26546,7 @@
                                                                 "name": "IncidentTargetRep",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTargetRep"
+                                                            "varName": "incidentTargetRep"
                                                         },
                                                         "threatPreventionsEvents": {
                                                             "args": {},
@@ -26556,9 +26556,9 @@
                                                             "isDeprecated": false,
                                                             "name": "threatPreventionsEvents",
                                                             "path": "story.incident.ThreatPrevention.threatPreventionsEvents",
-                                                            "requestStr": "$ThreatPreventionEvents:[ThreatPreventionEvents] ",
+                                                            "requestStr": "$threatPreventionEvents:[ThreatPreventionEvents] ",
                                                             "required": false,
-                                                            "responseStr": "threatPreventionsEvents:$ThreatPreventionEvents ",
+                                                            "responseStr": "threatPreventionsEvents:$threatPreventionEvents ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -27060,10 +27060,10 @@
                                                                 "name": "ThreatPreventionEvents",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "ThreatPreventionEvents"
+                                                            "varName": "threatPreventionEvents"
                                                         },
                                                         "ticket": {
-                                                            "alias": "ThreatPreventionTicket: ticket",
+                                                            "alias": "threatPreventionTicket: ticket",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -27091,9 +27091,9 @@
                                                             "isDeprecated": false,
                                                             "name": "timeSeries",
                                                             "path": "story.incident.ThreatPrevention.timeSeries",
-                                                            "requestStr": "$IncidentTimeseries:[IncidentTimeseries] ",
+                                                            "requestStr": "$incidentTimeseries:[IncidentTimeseries] ",
                                                             "required": false,
-                                                            "responseStr": "timeSeries:$IncidentTimeseries ",
+                                                            "responseStr": "timeSeries:$incidentTimeseries ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -27164,7 +27164,7 @@
                                                                             "varName": "info"
                                                                         },
                                                                         "key": {
-                                                                            "alias": "TimeseriesKeyKey: key",
+                                                                            "alias": "timeseriesKeyKey: key",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": null,
@@ -27172,9 +27172,9 @@
                                                                             "isDeprecated": false,
                                                                             "name": "key",
                                                                             "path": "story.incident.ThreatPrevention.timeSeries.key",
-                                                                            "requestStr": "$TimeseriesKey:TimeseriesKey ",
+                                                                            "requestStr": "$timeseriesKey:TimeseriesKey ",
                                                                             "required": false,
-                                                                            "responseStr": "key:$TimeseriesKey ",
+                                                                            "responseStr": "key:$timeseriesKey ",
                                                                             "type": {
                                                                                 "definition": {
                                                                                     "description": null,
@@ -27188,9 +27188,9 @@
                                                                                             "isDeprecated": false,
                                                                                             "name": "dimensions",
                                                                                             "path": "story.incident.ThreatPrevention.timeSeries.key.dimensions",
-                                                                                            "requestStr": "$DimensionKey:[DimensionKey] ",
+                                                                                            "requestStr": "$dimensionKey:[DimensionKey] ",
                                                                                             "required": false,
-                                                                                            "responseStr": "dimensions:$DimensionKey ",
+                                                                                            "responseStr": "dimensions:$dimensionKey ",
                                                                                             "type": {
                                                                                                 "definition": {
                                                                                                     "description": null,
@@ -27253,7 +27253,7 @@
                                                                                                 "name": "DimensionKey",
                                                                                                 "non_null": false
                                                                                             },
-                                                                                            "varName": "DimensionKey"
+                                                                                            "varName": "dimensionKey"
                                                                                         },
                                                                                         "measureFieldName": {
                                                                                             "args": {},
@@ -27290,7 +27290,7 @@
                                                                                 "name": "TimeseriesKey",
                                                                                 "non_null": false
                                                                             },
-                                                                            "varName": "TimeseriesKey"
+                                                                            "varName": "timeseriesKey"
                                                                         },
                                                                         "label": {
                                                                             "args": {},
@@ -27334,7 +27334,7 @@
                                                                             "varName": "sum"
                                                                         },
                                                                         "units": {
-                                                                            "alias": "UnitTypeUnits: units",
+                                                                            "alias": "unitTypeUnits: units",
                                                                             "args": {},
                                                                             "deprecationReason": null,
                                                                             "description": "Identifies what unit of data this timeseries represents. Note that toRate is only available for particular types\nof data to make sense.",
@@ -27448,10 +27448,10 @@
                                                                 "name": "IncidentTimeseries",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "IncidentTimeseries"
+                                                            "varName": "incidentTimeseries"
                                                         },
                                                         "user": {
-                                                            "alias": "UserRef: user",
+                                                            "alias": "userRef: user",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -27459,9 +27459,9 @@
                                                             "isDeprecated": false,
                                                             "name": "user",
                                                             "path": "story.incident.ThreatPrevention.user",
-                                                            "requestStr": "$UserRef:UserRef ",
+                                                            "requestStr": "$userRef:UserRef ",
                                                             "required": false,
-                                                            "responseStr": "user:$UserRef ",
+                                                            "responseStr": "user:$userRef ",
                                                             "type": {
                                                                 "definition": {
                                                                     "description": null,
@@ -27523,10 +27523,10 @@
                                                                 "name": "UserRef",
                                                                 "non_null": false
                                                             },
-                                                            "varName": "UserRef"
+                                                            "varName": "userRef"
                                                         },
                                                         "vendor": {
-                                                            "alias": "ThreatPreventionVendor: vendor",
+                                                            "alias": "threatPreventionVendor: vendor",
                                                             "args": {},
                                                             "deprecationReason": null,
                                                             "description": null,
@@ -27587,7 +27587,7 @@
                                         "name": "MergedIncident",
                                         "non_null": false
                                     },
-                                    "varName": "MergedIncident"
+                                    "varName": "mergedIncident"
                                 },
                                 "playbook": {
                                     "args": {},
@@ -27637,9 +27637,9 @@
                                     "isDeprecated": false,
                                     "name": "timeline",
                                     "path": "story.timeline",
-                                    "requestStr": "$TimelineItem:[TimelineItem]! ",
+                                    "requestStr": "$timelineItem:[TimelineItem]! ",
                                     "required": true,
-                                    "responseStr": "timeline:$TimelineItem ",
+                                    "responseStr": "timeline:$timelineItem ",
                                     "type": {
                                         "definition": {
                                             "description": null,
@@ -27666,7 +27666,7 @@
                                                     "varName": "additionalInfo"
                                                 },
                                                 "analystInfo": {
-                                                    "alias": "AnalystInfoAnalystInfo: analystInfo",
+                                                    "alias": "analystInfoAnalystInfo: analystInfo",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Data about the analyst for this timeline item (ie. name, email)",
@@ -27674,9 +27674,9 @@
                                                     "isDeprecated": false,
                                                     "name": "analystInfo",
                                                     "path": "story.timeline.analystInfo",
-                                                    "requestStr": "$AnalystInfo:AnalystInfo ",
+                                                    "requestStr": "$analystInfo:AnalystInfo ",
                                                     "required": false,
-                                                    "responseStr": "analystInfo:$AnalystInfo ",
+                                                    "responseStr": "analystInfo:$analystInfo ",
                                                     "type": {
                                                         "definition": {
                                                             "description": null,
@@ -27736,10 +27736,10 @@
                                                         "name": "AnalystInfo",
                                                         "non_null": false
                                                     },
-                                                    "varName": "AnalystInfo"
+                                                    "varName": "analystInfo"
                                                 },
                                                 "category": {
-                                                    "alias": "TimelineItemCategoryEnumCategory: category",
+                                                    "alias": "timelineItemCategoryEnumCategory: category",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Enum for the timeline category (ie. Information, Warning, Error)",
@@ -27876,7 +27876,7 @@
                                                     "varName": "descriptions"
                                                 },
                                                 "type": {
-                                                    "alias": "TimelineTypeEnumType: type",
+                                                    "alias": "timelineTypeEnumType: type",
                                                     "args": {},
                                                     "deprecationReason": null,
                                                     "description": "Enum for the type (ie. Diff, Action, Comment)",
@@ -27944,7 +27944,7 @@
                                         "name": "TimelineItem",
                                         "non_null": false
                                     },
-                                    "varName": "TimelineItem"
+                                    "varName": "timelineItem"
                                 },
                                 "updatedAt": {
                                     "args": {},
@@ -27981,7 +27981,7 @@
                         "name": "Story",
                         "non_null": false
                     },
-                    "varName": "Story"
+                    "varName": "story"
                 }
             },
             "inputFields": null,

catocli 1.0.13__py3-none-any.whl → 1.0.15__py3-none-any.whl

Potentially problematic release.

catocli 1.0.13py3-none-any.whl → 1.0.15py3-none-any.whl