logstash-codec-cef 6.2.7-java → 6.2.8-java
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/CHANGELOG.md +3 -0
- data/docs/index.asciidoc +8 -0
- data/logstash-codec-cef.gemspec +1 -1
- metadata +8 -8
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA256:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: e6bb25740f5ef4da9a3941d006e2d678c2e17ca9ae97b4edfd1260e51f734b9f
|
|
4
|
+
data.tar.gz: 45f6488d3872b77e6e8dd772340ea26682610fbbe2d40573d7818439a6d201f8
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: 8da96accea3e8be07ea9dc8c26c02efd482f6a761bd00ef6c1988b61d069bc84172648751af79dd78e1dc04d70dcd5351b8b5f5921f0cd16cc57b3109ebac3a0
|
|
7
|
+
data.tar.gz: d7d27a6b559fecef336fdf6fc25cbc2c0a6c99266d22045dab6e5cc80bfdf12f14dca919af28e25aaecfc9b2d9242506f28789a263bf73fce370b7e711cdc793
|
data/CHANGELOG.md
CHANGED
|
@@ -1,3 +1,6 @@
|
|
|
1
|
+
## 6.2.8
|
|
2
|
+
- [Doc] Added `raw_data_field` to docs. [#105](https://github.com/logstash-plugins/logstash-codec-cef/pull/105)
|
|
3
|
+
|
|
1
4
|
## 6.2.7
|
|
2
5
|
- Fix: when decoding in an ecs_compatibility mode, timestamp-normalized fields now handle provided-but-empty values [#102](https://github.com/logstash-plugins/logstash-codec-cef/issues/102)
|
|
3
6
|
|
data/docs/index.asciidoc
CHANGED
|
@@ -407,6 +407,7 @@ The following is a mapping between these fields.
|
|
|
407
407
|
| <<plugins-{type}s-{plugin}-locale>> |<<string,string>>|No
|
|
408
408
|
| <<plugins-{type}s-{plugin}-name>> |<<string,string>>|No
|
|
409
409
|
| <<plugins-{type}s-{plugin}-product>> |<<string,string>>|No
|
|
410
|
+
| <<plugins-{type}s-{plugin}-raw_data_field>> |<<string,string>>|No
|
|
410
411
|
| <<plugins-{type}s-{plugin}-reverse_mapping>> |<<boolean,boolean>>|No
|
|
411
412
|
| <<plugins-{type}s-{plugin}-severity>> |<<string,string>>|No
|
|
412
413
|
| <<plugins-{type}s-{plugin}-signature>> |<<string,string>>|No
|
|
@@ -535,6 +536,13 @@ When this codec is used in an Output Plugin, this option can be used to specify
|
|
|
535
536
|
value of the device product field in CEF header. The new value can include `%{foo}` strings
|
|
536
537
|
to help you build a new value from other parts of the event.
|
|
537
538
|
|
|
539
|
+
[id="plugins-{type}s-{plugin}-raw_data_field"]
|
|
540
|
+
===== `raw_data_field`
|
|
541
|
+
|
|
542
|
+
* Value type is <<string,string>>
|
|
543
|
+
* There is no default value for this setting
|
|
544
|
+
|
|
545
|
+
Store the raw data to the field, for example `[event][original]`. Existing target field will be overriden.
|
|
538
546
|
|
|
539
547
|
[id="plugins-{type}s-{plugin}-reverse_mapping"]
|
|
540
548
|
===== `reverse_mapping`
|
data/logstash-codec-cef.gemspec
CHANGED
metadata
CHANGED
|
@@ -1,14 +1,14 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: logstash-codec-cef
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 6.2.
|
|
4
|
+
version: 6.2.8
|
|
5
5
|
platform: java
|
|
6
6
|
authors:
|
|
7
7
|
- Elastic
|
|
8
8
|
autorequire:
|
|
9
9
|
bindir: bin
|
|
10
10
|
cert_chain: []
|
|
11
|
-
date:
|
|
11
|
+
date: 2024-10-22 00:00:00.000000000 Z
|
|
12
12
|
dependencies:
|
|
13
13
|
- !ruby/object:Gem::Dependency
|
|
14
14
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -20,8 +20,8 @@ dependencies:
|
|
|
20
20
|
- !ruby/object:Gem::Version
|
|
21
21
|
version: '2.99'
|
|
22
22
|
name: logstash-core-plugin-api
|
|
23
|
-
prerelease: false
|
|
24
23
|
type: :runtime
|
|
24
|
+
prerelease: false
|
|
25
25
|
version_requirements: !ruby/object:Gem::Requirement
|
|
26
26
|
requirements:
|
|
27
27
|
- - ">="
|
|
@@ -37,8 +37,8 @@ dependencies:
|
|
|
37
37
|
- !ruby/object:Gem::Version
|
|
38
38
|
version: '1.3'
|
|
39
39
|
name: logstash-mixin-ecs_compatibility_support
|
|
40
|
-
prerelease: false
|
|
41
40
|
type: :runtime
|
|
41
|
+
prerelease: false
|
|
42
42
|
version_requirements: !ruby/object:Gem::Requirement
|
|
43
43
|
requirements:
|
|
44
44
|
- - "~>"
|
|
@@ -51,8 +51,8 @@ dependencies:
|
|
|
51
51
|
- !ruby/object:Gem::Version
|
|
52
52
|
version: '1.0'
|
|
53
53
|
name: logstash-mixin-event_support
|
|
54
|
-
prerelease: false
|
|
55
54
|
type: :runtime
|
|
55
|
+
prerelease: false
|
|
56
56
|
version_requirements: !ruby/object:Gem::Requirement
|
|
57
57
|
requirements:
|
|
58
58
|
- - "~>"
|
|
@@ -65,8 +65,8 @@ dependencies:
|
|
|
65
65
|
- !ruby/object:Gem::Version
|
|
66
66
|
version: '0'
|
|
67
67
|
name: logstash-devutils
|
|
68
|
-
prerelease: false
|
|
69
68
|
type: :development
|
|
69
|
+
prerelease: false
|
|
70
70
|
version_requirements: !ruby/object:Gem::Requirement
|
|
71
71
|
requirements:
|
|
72
72
|
- - ">="
|
|
@@ -79,8 +79,8 @@ dependencies:
|
|
|
79
79
|
- !ruby/object:Gem::Version
|
|
80
80
|
version: '0'
|
|
81
81
|
name: insist
|
|
82
|
-
prerelease: false
|
|
83
82
|
type: :development
|
|
83
|
+
prerelease: false
|
|
84
84
|
version_requirements: !ruby/object:Gem::Requirement
|
|
85
85
|
requirements:
|
|
86
86
|
- - ">="
|
|
@@ -127,7 +127,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
|
|
|
127
127
|
- !ruby/object:Gem::Version
|
|
128
128
|
version: '0'
|
|
129
129
|
requirements: []
|
|
130
|
-
rubygems_version: 3.
|
|
130
|
+
rubygems_version: 3.3.26
|
|
131
131
|
signing_key:
|
|
132
132
|
specification_version: 4
|
|
133
133
|
summary: Reads the ArcSight Common Event Format (CEF).
|