datetime -> time.parse_timestamp (#1459)

panther-labs · Jan 6, 2025 · 14a1a32 · 14a1a32
1 parent 5cf59bb
commit 14a1a32
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/global_helpers/panther_base_helpers.py b/global_helpers/panther_base_helpers.py
@@ -338,7 +338,7 @@ def pantherflow_investigation(event, interval="30m"):
 
     query = f"""union panther_signals.public.correlation_signals
     , panther_logs.public.{logtype}
-| where p_event_time between datetime('{timestamp}') - time.parse_timespan('{interval}') .. datetime('{timestamp}') + time.parse_timespan('{interval}')
+| where p_event_time between time.parse_timestamp('{timestamp}') - time.parse_timespan('{interval}') .. time.parse_timestamp('{timestamp}') + time.parse_timespan('{interval}')
 """
 
     first = True