Adding "Replay Search" bulk action for alerts/events.

[dennisoelkers]

Description

Motivation and Context

This PR is adding a bulk action that allows replaying searches for multiple alerts/events. This is targeted at analysts wanting to investigate multiple events closely, filtering out non-relevant events and performing actions on the ones remaining. To support this, this feature is building a stack of events, showing the on the left side of the screen, allowing the user to replay them one by one.

The user can now mark individual events as viewed, jumping to the next one which was not viewed yet. The user can also remove events which have turned out to be irrelevant. This allows the user to keep track of the progress and make sure that no event is missed. At the end, the user can perform further bulk actions on the events remaining in the stack.

How Has This Been Tested?

Screenshots (if appropriate):

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Refactoring (non-breaking change)
• Breaking change (fix or feature that would cause existing functionality to change)

Checklist:

• My code follows the code style of this project.
• My change requires a change to the documentation.
• I have updated the documentation accordingly.
• I have read the CONTRIBUTING document.
• I have added tests to cover my changes.

[maxiadlovskii]

It would be nice to use the check mark only if an event is already investigated. I was a bit confused that none-investigated event has a darker color than investigated. We can use just a simple check box or some other icon for non investigated event

[maxiadlovskii]

Suggested change

	color: ${$done ? theme.colors.variant.success : theme.colors.global.textDefault};
	color: ${$done ? theme.colors.variant.success : theme.colors.gray[60]};

[maxiadlovskii]

That would make icon in the same color as trash icon

[dennisoelkers]

✅