feat(flare): migrate connector to manager-supported mode (#6759)

[jabesq]

Proposed changes

• Migrate the Flare connector to manager-supported mode using connectors-sdk and Pydantic settings (ConnectorSettings / BaseConnectorSettings), enabling UI-driven configuration and lifecycle management.
• Set manager_supported: true in the connector manifest and record last_verified_date.
• Rename api_base_url to api_domain with a DeprecatedField shim for backward compatibility until 2027-06-30.
• Mark api_key as SecretStr to prevent accidental secret leakage in logs.
• Fix work-initiation logic to only open a work unit when events actually exist, and properly mark work as failed on unhandled errors.
• Modernize the Dockerfile (multi-stage, remove entrypoint.sh) to align with the standardized connector image layout.
• Relocate tests to a top-level tests/ directory and add integration tests validating the manager-supported workflow.
• Update config.yml.sample, docker-compose.yml, and README.md to reflect the new settings structure.

Related issues

• Closes feat(flare-io): Verify the connector #6759

Checklist

• I consider the submitted work as finished
• I have signed my commits using GPG key.
• I tested the code for its functionality using different use cases
• I added/update the relevant documentation (either on github or on notion)
• Where necessary I refactored code to improve the overall quality

Further comments

This PR performs a full manager-supported migration for the Flare connector. The approach follows the standard migration pattern:

1. Settings layer — replaced get_config_variable calls with a typed Pydantic ConnectorSettings class backed by connectors-sdk base models, enabling the platform to manage configuration via the UI.
2. Connector class — refactored the monolithic connector into the SDK-compatible structure (src/connector/connector.py + src/connector/settings.py).
3. Backward compatibility — the old FLARE_API_BASE_URL env var is preserved via DeprecatedField so existing deployments continue to work without changes.
4. Robustness — work units are now only created when there are events to process, and failures are properly reported back to the platform.
5. Testing — integration tests validate the full run cycle in manager-supported mode.

[codecov]

Codecov Report

❌ Patch coverage is 92.00000% with 2 lines in your changes missing coverage. Please review.
✅ All tests successful. No failed tests found.

Files with missing lines	Patch %	Lines
external-import/flare/src/connector/connector.py	81.81%	2 Missing ⚠️

❗ There is a different number of reports uploaded between BASE (143e8c5) and HEAD (bcc1ad3). Click for more details.

HEAD has 119 uploads less than BASE

Flag	BASE (143e8c5)	HEAD (bcc1ad3)
connectors	123	4

Additional details and impacted files

@@             Coverage Diff             @@
##           master    #6788       +/-   ##
===========================================
- Coverage   33.38%    0.54%   -32.85%     
===========================================
  Files        1994     1902       -92     
  Lines      122846   120237     -2609     
===========================================
- Hits        41017      654    -40363     
- Misses      81829   119583    +37754     

Files with missing lines	Coverage Δ
external-import/flare/src/connector/settings.py	100.00% <100.00%> (ø)
...ternal-import/flare/src/flare_client/api_client.py	100.00% <100.00%> (ø)
external-import/flare/src/main.py	100.00% <100.00%> (+100.00%)	⬆️
external-import/flare/src/connector/connector.py	96.87% <81.81%> (-3.13%)	⬇️

... and 1137 files with indirect coverage changes

📢 Thoughts on this report? Let us know!

🚀 New features to boost your workflow:

• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[Copilot]

Pull request overview

This PR migrates the external-import/flare connector to a manager-supported setup using connectors-sdk/Pydantic settings, updates packaging/deployment artifacts, and reshapes the test suite to validate the new lifecycle/configuration flow.

Changes:

• Introduces ConnectorSettings/Pydantic configuration (including a deprecated api_base_url shim and SecretStr for api_key) and updates runtime wiring.
• Modernizes deployment artifacts (manifest, docs, Dockerfile, compose/config samples) and removes the legacy entrypoint script.
• Relocates/expands tests into a top-level tests/ layout, adding integration-style coverage for main/bootstrap, client, and mapping logic.

Reviewed changes

Copilot reviewed 20 out of 23 changed files in this pull request and generated 18 comments.

Show a summary per file

File	Description
external-import/flare/src/main.py	Bootstrap wiring for settings/helper/client/mapper/connector and top-level exception handling.
external-import/flare/src/connector/settings.py	New typed connector + Flare settings (deprecated field shim, SecretStr, new defaults).
external-import/flare/src/connector/connector.py	Work-unit initiation logic refactor and improved error reporting.
external-import/flare/src/flare_client/api_client.py	Client initialization updated for SecretStr API key and api_domain naming.
external-import/flare/tests/test_main.py	Adds integration tests for settings/helper/bootstrap wiring.
external-import/flare/tests/test_converter_to_stix.py	Adds unit tests for mapper + observable/relationship generation behavior.
external-import/flare/tests/test_api_client.py	Adds unit tests for client paging/filtering/action filtering and error paths.
external-import/flare/tests/test_connector/test_settings.py	Updates settings tests for new defaults and renamed api_domain.
external-import/flare/tests/test_connector/test_events.py	Expands events tests (enums + parsing helpers + param coverage).
external-import/flare/tests/test_connector/test_connector.py	Updates/extends connector flow tests (note: contains duplicated test blocks).
external-import/flare/tests/test_client/test_flare_client.py	Updates client tests for SecretStr + api_domain.
external-import/flare/metadata/connector_manifest.json	Sets manager_supported: true, updates title/logo/last_verified_date metadata.
external-import/flare/metadata/connector_config_schema.json	Adds manager/UI config JSON schema for env-var style settings.
external-import/flare/metadata/CONNECTOR_CONFIG_DOC.md	Adds generated human-readable configuration documentation.
external-import/flare/README.md	Points users to generated config documentation.
external-import/flare/docker-compose.yml	Updates example env vars (needs alignment with new names/defaults).
external-import/flare/config.yml.sample	Updates example YAML config (needs alignment with new names/defaults).
external-import/flare/Dockerfile	Improves caching by copying requirements first; switches to direct python main.py entrypoint.
external-import/flare/entrypoint.sh	Removed legacy entrypoint script.
external-import/flare/src/tests/test_main.py	Removes legacy test location under src/tests/.
external-import/flare/src/connector/tests/test_events.py	Removes legacy test location under src/connector/tests/.
external-import/flare/src/connector/tests/test_connector.py	Removes legacy test location under src/connector/tests/.

[Copilot]

Pull request overview

Copilot reviewed 20 out of 23 changed files in this pull request and generated 13 comments.

Comments suppressed due to low confidence (1)

external-import/flare/src/connector/connector.py:38

• self.work_id is a per-run value but it's never reset at the start of process_message(). If the connector runs multiple times in the same process, a previous run’s work id can be reused and incorrectly marked processed/failed on later runs. Also the local work_id variable is unused.

    def process_message(self) -> None:
        try:
            current_state = self.helper.get_state()