logstash-filter-useragent 3.1.0-java

checksums.yaml

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: 2882cc7695727f80d8010a52e600c24e88c44ad4
+  data.tar.gz: 8a174676a2edf46ce48adfc9540c28403aa2c918
+SHA512:
+  metadata.gz: 0d2bdcc43b9fb5433a6b41c94544c3f4fe8979e79772e2973c5225d7fcf1edda14692d3cec151ea7db4647ec6c59c226f4b0c09a3ec7dde9af3a3dd7d2dfa1e1
+  data.tar.gz: 340fb536b59287c08e69365a4c759d76666c2c254d837df867305861d31f8c6626b7858252de844bbd236a4cb5389aa859b01f0c660fa587bd3d347c654ef7d2

data/CHANGELOG.md

@@ -0,0 +1,36 @@
+## 3.1.0
+  - Parser performance increase of a factor of about 2.5 by moving core parser logic from Ruby to Java
+  - Lower memory footprint of Java implementation allowed for increasing the default parser cache size from 1k to 100k
+    without an increase in memory consumption
+
+## 3.0.3
+  - Move one log message from info to debug to avoid noise
+
+## 3.0.2
+  - Relax constraint on logstash-core-plugin-api to >= 1.60 <= 2.99
+
+## 3.0.1
+  - Republish all the gems under jruby.
+## 3.0.0
+  - Update the plugin to the version 2.0 of the plugin api, this change is required for Logstash 5.0 compatibility. See https://github.com/elastic/logstash/issues/5141
+# 2.0.8
+  - Revert addition of Mutex. This plugin now depends on jruby having threadsafe regexps
+# 2.0.7
+  - Add Mutex to help on non-threadsafe JRuby versions
+# 2.0.6
+  - Depend on logstash-core-plugin-api instead of logstash-core, removing the need to mass update plugins on major releases of logstash
+# 2.0.5
+  - New dependency requirements for logstash-core for the 5.0 release
+## 2.0.4
+ - Refactored field references, fixed specs and some cleanups
+
+## 2.0.0
+ - Plugins were updated to follow the new shutdown semantic, this mainly allows Logstash to instruct input plugins to terminate gracefully,
+   instead of using Thread.raise on the plugins' threads. Ref: https://github.com/elastic/logstash/pull/3895
+ - Dependency on logstash-core update to 2.0
+
+## 2.0.1
+  - Add ability to replace source with target
+
+## 1.1.0
+  - Add LRU cache

data/CONTRIBUTORS

@@ -0,0 +1,18 @@
+The following is a list of people who have contributed ideas, code, bug
+reports, or in general have helped logstash along its way.
+
+Contributors:
+* Alex Tambellini (atambo)
+* Colin Surprenant (colinsurprenant)
+* Dan Everton (deverton)
+* Jay Luker (lbjay)
+* Jordan Sissel (jordansissel)
+* Kubes (pkubat)
+* Pier-Hugues Pellerin (ph)
+* Richard Pijnenburg (electrical)
+* Suyog Rao (suyograo)
+
+Note: If you've sent us patches, bug reports, or otherwise contributed to
+Logstash, and you aren't on the list above and want to be, please let us know
+and we'll make sure you're here. Contributions from folks like you are what make
+open source awesome.

data/Gemfile

@@ -0,0 +1,4 @@
+source 'https://rubygems.org'
+
+# Specify your gem's dependencies in logstash-mass_effect.gemspec
+gemspec

data/LICENSE

@@ -0,0 +1,13 @@
+Copyright (c) 2012–2016 Elasticsearch <http://www.elastic.co>
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.

data/NOTICE.TXT

@@ -0,0 +1,5 @@
+Elasticsearch
+Copyright 2012-2017 Elasticsearch
+
+This product includes software developed by The Apache Software
+Foundation (http://www.apache.org/).

data/README.md

@@ -0,0 +1,99 @@
+# Logstash Plugin
+
+[![Travis Build Status](https://travis-ci.org/logstash-plugins/logstash-filter-useragent.svg)](https://travis-ci.org/logstash-plugins/logstash-filter-useragent)
+
+This is a plugin for [Logstash](https://github.com/elastic/logstash).
+
+It is fully free and fully open source. The license is Apache 2.0, meaning you are pretty much free to use it however you want in whatever way.
+
+## Documentation
+
+Logstash provides infrastructure to automatically generate documentation for this plugin. We use the asciidoc format to write documentation so any comments in the source code will be first converted into asciidoc and then into html. All plugin documentation are placed under one [central location](http://www.elastic.co/guide/en/logstash/current/).
+
+- For formatting code or config example, you can use the asciidoc `[source,ruby]` directive
+- For more asciidoc formatting tips, see the excellent reference here https://github.com/elastic/docs#asciidoc-guide
+
+## Need Help?
+
+Need help? Try #logstash on freenode IRC or the https://discuss.elastic.co/c/logstash discussion forum.
+
+## Developing
+
+### 1. Plugin Developement and Testing
+
+#### Code
+- To get started, you'll need JRuby with the Bundler gem installed.
+
+- Create a new plugin or clone and existing from the GitHub [logstash-plugins](https://github.com/logstash-plugins) organization. We also provide [example plugins](https://github.com/logstash-plugins?query=example).
+
+- Install dependencies
+```sh
+bundle install
+rake install_jars
+```
+
+#### Test
+
+- Update your dependencies
+
+```sh
+bundle install
+```
+
+- Run tests
+
+```sh
+bundle exec rake test
+```
+
+### 2. Running your unpublished Plugin in Logstash
+
+#### 2.1 Run in a local Logstash clone
+
+- Edit Logstash `Gemfile` and add the local plugin path, for example:
+```ruby
+gem "logstash-filter-awesome", :path => "/your/local/logstash-filter-awesome"
+```
+- Install plugin
+```sh
+# Logstash 2.3 and higher
+bin/logstash-plugin install --no-verify
+
+# Prior to Logstash 2.3
+bin/plugin install --no-verify
+
+```
+- Run Logstash with your plugin
+```sh
+bin/logstash -e 'filter {awesome {}}'
+```
+At this point any modifications to the plugin code will be applied to this local Logstash setup. After modifying the plugin, simply rerun Logstash.
+
+#### 2.2 Run in an installed Logstash
+
+You can use the same **2.1** method to run your plugin in an installed Logstash by editing its `Gemfile` and pointing the `:path` to your local plugin development directory or you can build the gem and install it using:
+
+- Build your plugin gem
+```sh
+gem build logstash-filter-awesome.gemspec
+```
+- Install the plugin from the Logstash home
+```sh
+# Logstash 2.3 and higher
+bin/logstash-plugin install --no-verify
+
+# Prior to Logstash 2.3
+bin/plugin install --no-verify
+
+```
+- Start Logstash and proceed to test the plugin
+
+## Contributing
+
+All contributions are welcome: ideas, patches, documentation, bug reports, complaints, and even something you drew up on a napkin.
+
+Programming is not a required skill. Whatever you've seen about open source and maintainers or community members  saying "send patches or die" - you will not see that here.
+
+It is more important to the community that you are able to contribute.
+
+For more information about contributing, see the [CONTRIBUTING](https://github.com/elastic/logstash/blob/master/CONTRIBUTING.md) file.

data/docs/index.asciidoc

@@ -0,0 +1,117 @@
+:plugin: useragent
+:type: filter
+
+///////////////////////////////////////////
+START - GENERATED VARIABLES, DO NOT EDIT!
+///////////////////////////////////////////
+:version: %VERSION%
+:release_date: %RELEASE_DATE%
+:changelog_url: %CHANGELOG_URL%
+:include_path: ../../../logstash/docs/include
+///////////////////////////////////////////
+END - GENERATED VARIABLES, DO NOT EDIT!
+///////////////////////////////////////////
+
+[id="plugins-{type}-{plugin}"]
+
+=== Useragent
+
+include::{include_path}/plugin_header.asciidoc[]
+
+==== Description
+
+Parse user agent strings into structured data based on BrowserScope data
+
+UserAgent filter, adds information about user agent like family, operating
+system, version, and device
+
+Logstash releases ship with the regexes.yaml database made available from
+ua-parser with an Apache 2.0 license. For more details on ua-parser, see
+<https://github.com/tobie/ua-parser/>.
+
+[id="plugins-{type}s-{plugin}-options"]
+==== Useragent Filter Configuration Options
+
+This plugin supports the following configuration options plus the <<plugins-{type}s-common-options>> described later.
+
+[cols="<,<,<",options="header",]
+|=======================================================================
+|Setting |Input type|Required
+| <<plugins-{type}s-{plugin}-lru_cache_size>> |<<number,number>>|No
+| <<plugins-{type}s-{plugin}-prefix>> |<<string,string>>|No
+| <<plugins-{type}s-{plugin}-regexes>> |<<string,string>>|No
+| <<plugins-{type}s-{plugin}-source>> |<<string,string>>|Yes
+| <<plugins-{type}s-{plugin}-target>> |<<string,string>>|No
+|=======================================================================
+
+Also see <<plugins-{type}s-common-options>> for a list of options supported by all
+filter plugins.
+
+&nbsp;
+
+[id="plugins-{type}s-{plugin}-lru_cache_size"]
+===== `lru_cache_size` 
+
+  * Value type is <<number,number>>
+  * Default value is `1000`
+
+UA parsing is surprisingly expensive. This filter uses an LRU cache to take advantage of the fact that
+user agents are often found adjacent to one another in log files and rarely have a random distribution.
+The higher you set this the more likely an item is to be in the cache and the faster this filter will run.
+However, if you set this too high you can use more memory than desired.
+
+Experiment with different values for this option to find the best performance for your dataset.
+
+This MUST be set to a value > 0. There is really no reason to not want this behavior, the overhead is minimal
+and the speed gains are large.
+
+It is important to note that this config value is global. That is to say all instances of the user agent filter
+share the same cache. The last declared cache size will 'win'. The reason for this is that there would be no benefit
+to having multiple caches for different instances at different points in the pipeline, that would just increase the
+number of cache misses and waste memory.
+
+[id="plugins-{type}s-{plugin}-prefix"]
+===== `prefix` 
+
+  * Value type is <<string,string>>
+  * Default value is `""`
+
+A string to prepend to all of the extracted keys
+
+[id="plugins-{type}s-{plugin}-regexes"]
+===== `regexes` 
+
+  * Value type is <<string,string>>
+  * There is no default value for this setting.
+
+`regexes.yaml` file to use
+
+If not specified, this will default to the `regexes.yaml` that ships
+with logstash.
+
+You can find the latest version of this here:
+<https://github.com/ua-parser/uap-core/blob/master/regexes.yaml>
+
+[id="plugins-{type}s-{plugin}-source"]
+===== `source` 
+
+  * This is a required setting.
+  * Value type is <<string,string>>
+  * There is no default value for this setting.
+
+The field containing the user agent string. If this field is an
+array, only the first value will be used.
+
+[id="plugins-{type}s-{plugin}-target"]
+===== `target` 
+
+  * Value type is <<string,string>>
+  * There is no default value for this setting.
+
+The name of the field to assign user agent data into.
+
+If not specified user agent data will be stored in the root of the event.
+
+
+
+include::{include_path}/{type}.asciidoc[]

data/lib/logstash-filter-useragent_jars.rb

@@ -0,0 +1,4 @@
+# encoding: utf-8
+
+require 'jar_dependencies'
+require_jar('org.logstash.filters', 'logstash-filter-useragent', '3.1.0')

data/lib/logstash/filters/useragent.rb

@@ -0,0 +1,149 @@
+# encoding: utf-8
+require "java"
+require "logstash-filter-useragent_jars"
+require "logstash/filters/base"
+require "logstash/namespace"
+require "tempfile"
+require "thread"
+
+# Parse user agent strings into structured data based on BrowserScope data
+#
+# UserAgent filter, adds information about user agent like family, operating
+# system, version, and device
+#
+# Logstash releases ship with the regexes.yaml database made available from
+# ua-parser with an Apache 2.0 license. For more details on ua-parser, see
+# <https://github.com/tobie/ua-parser/>.
+class LogStash::Filters::UserAgent < LogStash::Filters::Base
+
+  config_name "useragent"
+
+  # The field containing the user agent string. If this field is an
+  # array, only the first value will be used.
+  config :source, :validate => :string, :required => true
+
+  # The name of the field to assign user agent data into.
+  #
+  # If not specified user agent data will be stored in the root of the event.
+  config :target, :validate => :string
+
+  # `regexes.yaml` file to use
+  #
+  # If not specified, this will default to the `regexes.yaml` that ships
+  # with logstash.
+  #
+  # You can find the latest version of this here:
+  # <https://github.com/ua-parser/uap-core/blob/master/regexes.yaml>
+  config :regexes, :validate => :string
+
+  # A string to prepend to all of the extracted keys
+  config :prefix, :validate => :string, :default => ''
+
+  # UA parsing is surprisingly expensive. This filter uses an LRU cache to take advantage of the fact that
+  # user agents are often found adjacent to one another in log files and rarely have a random distribution.
+  # The higher you set this the more likely an item is to be in the cache and the faster this filter will run.
+  # However, if you set this too high you can use more memory than desired.
+  #
+  # Experiment with different values for this option to find the best performance for your dataset.
+  #
+  # This MUST be set to a value > 0. There is really no reason to not want this behavior, the overhead is minimal
+  # and the speed gains are large.
+  #
+  # It is important to note that this config value is global. That is to say all instances of the user agent filter
+  # share the same cache. The last declared cache size will 'win'. The reason for this is that there would be no benefit
+  # to having multiple caches for different instances at different points in the pipeline, that would just increase the
+  # number of cache misses and waste memory.
+  config :lru_cache_size, :validate => :number, :default => 100_000
+
+  def register
+
+    if @regexes.nil?
+      @parser = org.logstash.uaparser.CachingParser.new(lru_cache_size)
+    else
+      @logger.debug("Using user agent regexes", :regexes => @regexes)
+      yaml = ::File.open(regexes, "rb")
+      @parser = org.logstash.uaparser.CachingParser.new(yaml.read, lru_cache_size)
+      yaml.close
+    end
+
+    # make @target in the format [field name] if defined, i.e. surrounded by brakets
+    normalized_target = (@target && @target !~ /^\[[^\[\]]+\]$/) ? "[#{@target}]" : ""
+
+    # predefine prefixed field names
+    @prefixed_name = "#{normalized_target}[#{@prefix}name]"
+    @prefixed_os = "#{normalized_target}[#{@prefix}os]"
+    @prefixed_os_name = "#{normalized_target}[#{@prefix}os_name]"
+    @prefixed_os_major = "#{normalized_target}[#{@prefix}os_major]"
+    @prefixed_os_minor = "#{normalized_target}[#{@prefix}os_minor]"
+    @prefixed_device = "#{normalized_target}[#{@prefix}device]"
+    @prefixed_major = "#{normalized_target}[#{@prefix}major]"
+    @prefixed_minor = "#{normalized_target}[#{@prefix}minor]"
+    @prefixed_patch = "#{normalized_target}[#{@prefix}patch]"
+    @prefixed_build = "#{normalized_target}[#{@prefix}build]"
+  end
+
+  def filter(event)
+    useragent = event.get(@source)
+    useragent = useragent.first if useragent.is_a?(Array)
+
+    return if useragent.nil? || useragent.empty?
+
+    begin
+      ua_data = lookup_useragent(useragent)
+    rescue StandardError => e
+      @logger.error("Uknown error while parsing user agent data", :exception => e, :field => @source, :event => event)
+      return
+    end
+
+    return unless ua_data
+
+    event.remove(@source) if @target == @source
+    set_fields(event, ua_data)
+
+    filter_matched(event)
+  end
+
+  # should be private but need to stay public for specs
+  # TODO: (colin) the related specs should be refactored to not rely on private methods.
+  def lookup_useragent(useragent)
+    return unless useragent
+
+    # the UserAgentParser::Parser class is not thread safe, indications are that it is probably
+    # caused by the underlying JRuby regex code that is not thread safe.
+    # see https://github.com/logstash-plugins/logstash-filter-useragent/issues/25
+    @parser.parse(useragent)
+  end
+
+  private
+
+  def set_fields(event, ua_data)
+    # UserAgentParser outputs as US-ASCII.
+
+    event.set(@prefixed_name, ua_data.userAgent.family.dup.force_encoding(Encoding::UTF_8))
+
+    #OSX, Android and maybe iOS parse correctly, ua-agent parsing for Windows does not provide this level of detail
+
+    # Calls in here use #dup because there's potential for later filters to modify these values
+    # and corrupt the cache. See uap source here for details https://github.com/ua-parser/uap-ruby/tree/master/lib/user_agent_parser
+    if (os = ua_data.os)
+      # The OS is a rich object
+      event.set(@prefixed_os, ua_data.os.family.dup.force_encoding(Encoding::UTF_8))
+      event.set(@prefixed_os_name, os.family.dup.force_encoding(Encoding::UTF_8)) if os.family
+
+      # These are all strings
+      if os.minor && os.major
+        event.set(@prefixed_os_major, os.major.dup.force_encoding(Encoding::UTF_8)) if os.major
+        event.set(@prefixed_os_minor, os.minor.dup.force_encoding(Encoding::UTF_8)) if os.minor
+      end
+    end
+
+    event.set(@prefixed_device, ua_data.device.to_s.dup.force_encoding(Encoding::UTF_8)) if ua_data.device
+
+    if (ua_version = ua_data.userAgent)
+      event.set(@prefixed_major, ua_version.major.dup.force_encoding(Encoding::UTF_8)) if ua_version.major
+      event.set(@prefixed_minor, ua_version.minor.dup.force_encoding(Encoding::UTF_8)) if ua_version.minor
+      event.set(@prefixed_patch, ua_version.patch.dup.force_encoding(Encoding::UTF_8)) if ua_version.patch
+      event.set(@prefixed_build, ua_version.patchMinor.dup.force_encoding(Encoding::UTF_8)) if ua_version.patchMinor
+    end
+  end
+end

data/logstash-filter-useragent.gemspec

@@ -0,0 +1,27 @@
+Gem::Specification.new do |s|
+
+  s.name            = 'logstash-filter-useragent'
+  s.version         = '3.1.0'
+  s.licenses        = ['Apache License (2.0)']
+  s.summary         = "Parse user agent strings into structured data based on BrowserScope data"
+  s.description     = "This gem is a Logstash plugin required to be installed on top of the Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This gem is not a stand-alone program"
+  s.authors         = ["Elastic"]
+  s.email           = 'info@elastic.co'
+  s.homepage        = "http://www.elastic.co/guide/en/logstash/current/index.html"
+  s.platform        = "java"
+  s.require_paths   = ["lib", "vendor/jar-dependencies"]
+
+  # Files
+  s.files = Dir["lib/**/*","spec/**/*","*.gemspec","*.md","CONTRIBUTORS","Gemfile","LICENSE","NOTICE.TXT","vendor/jar-dependencies/**/*.jar","vendor/jar-dependencies/**/*.rb", "VERSION", "docs/**/*"]
+
+  # Tests
+  s.test_files = s.files.grep(%r{^(test|spec|features)/})
+
+  # Special flag to let us know this is actually a logstash plugin
+  s.metadata = { "logstash_plugin" => "true", "logstash_group" => "filter" }
+
+  # Gem dependencies
+  s.add_runtime_dependency "logstash-core-plugin-api", ">= 1.60", "<= 2.99"
+  s.add_development_dependency 'logstash-devutils'
+end
+

data/spec/filters/useragent_spec.rb

@@ -0,0 +1,129 @@
+# encoding: utf-8
+
+require "logstash/devutils/rspec/spec_helper"
+require "logstash/filters/useragent"
+
+describe LogStash::Filters::UserAgent do
+
+  describe "defaults" do
+    config <<-CONFIG
+      filter {
+        useragent {
+          source => "message"
+          target => "ua"
+        }
+      }
+    CONFIG
+
+    sample "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31" do
+      insist { subject }.include?("ua")
+      insist { subject.get("[ua][name]") } == "Chrome"
+      insist { subject.get("[ua][os]") } == "Linux"
+      insist { subject.get("[ua][major]") } == "26"
+      insist { subject.get("[ua][minor]") } == "0"
+    end
+  end
+
+  describe "Without target field" do
+    config <<-CONFIG
+      filter {
+        useragent {
+          source => "message"
+        }
+      }
+    CONFIG
+
+    sample "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31" do
+      insist { subject.get("name") } == "Chrome"
+      insist { subject.get("os") } == "Linux"
+      insist { subject.get("major") } == "26"
+      insist { subject.get("minor") } == "0"
+    end
+  end
+
+  describe "Without user agent" do
+    config <<-CONFIG
+      filter {
+        useragent {
+          source => "message"
+          target => "ua"
+        }
+      }
+    CONFIG
+
+    sample "foo" => "bar" do
+      reject { subject }.include?("ua")
+    end
+
+    sample "" do
+      reject { subject }.include?("ua")
+    end
+  end
+
+  describe "LRU object identity" do
+    let(:ua_string) { "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_5) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/45.0.2454.85 Safari/537.36" }
+    let(:uafilter) { LogStash::Filters::UserAgent.new("source" => "foo") }
+    let(:ua_data) { uafilter.lookup_useragent(ua_string) }
+
+    subject(:target) { LogStash::Event.new("foo" => ua_string) }
+
+    before do
+      uafilter.register
+
+      # Stub this out because this UA doesn't have this field
+      allow(ua_data.userAgent).to receive(:patchMinor).and_return("foo")
+
+      # expect(event).receive(:lookup_useragent)
+      uafilter.filter(target)
+    end
+
+    {
+      "name" => lambda {|uad| uad.userAgent.family},
+      "os" => lambda {|uad| uad.os.family},
+      "os_name" => lambda {|uad| uad.os.family},
+      "os_major" => lambda {|uad| uad.os.major},
+      "os_minor" => lambda {|uad| uad.os.minor},
+      "device" => lambda {|uad| uad.device.to_s},
+      "major" => lambda {|uad| uad.userAgent.major},
+      "minor" => lambda {|uad| uad.userAgent.minor},
+      "patch" => lambda {|uad| uad.userAgent.patch},
+      "build" => lambda {|uad| uad.userAgent.patchMinor}
+    }.each do |field, uad_getter|
+      context "for the #{field} field" do
+        let(:value) {uad_getter.call(ua_data)}
+        let(:target_field) { target.get(field)}
+
+        it "should not have a nil value" do
+          expect(target_field).to be_truthy
+        end
+
+        it "should have equivalent values" do
+          expect(target_field).to eql(value)
+        end
+
+        it "should dup/clone the field to prevent cache corruption" do
+          expect(target_field.object_id).not_to eql(value.object_id)
+        end
+      end
+    end
+  end
+
+  describe "Replace source with target" do
+    config <<-CONFIG
+      filter {
+        useragent {
+          source => "message"
+          target => "message"
+        }
+      }
+    CONFIG
+
+    sample "Mozilla/5.0 (X11; Linux i686) AppleWebKit/537.31 (KHTML, like Gecko) Chrome/26.0.1410.63 Safari/537.31" do
+      insist { subject.to_hash }.include?("message")
+      insist { subject.get("[message][name]") } == "Chrome"
+      insist { subject.get("[message][os]") } == "Linux"
+      insist { subject.get("[message][major]") } == "26"
+      insist { subject.get("[message][minor]") } == "0"
+    end
+  end
+end

metadata

@@ -0,0 +1,93 @@
+--- !ruby/object:Gem::Specification
+name: logstash-filter-useragent
+version: !ruby/object:Gem::Version
+  version: 3.1.0
+platform: java
+authors:
+- Elastic
+autorequire:
+bindir: bin
+cert_chain: []
+date: 2017-05-10 00:00:00.000000000 Z
+dependencies:
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.60'
+    - - "<="
+      - !ruby/object:Gem::Version
+        version: '2.99'
+  name: logstash-core-plugin-api
+  prerelease: false
+  type: :runtime
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '1.60'
+    - - "<="
+      - !ruby/object:Gem::Version
+        version: '2.99'
+- !ruby/object:Gem::Dependency
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  name: logstash-devutils
+  prerelease: false
+  type: :development
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+description: This gem is a Logstash plugin required to be installed on top of the Logstash core pipeline using $LS_HOME/bin/logstash-plugin install gemname. This gem is not a stand-alone program
+email: info@elastic.co
+executables: []
+extensions: []
+extra_rdoc_files: []
+files:
+- CHANGELOG.md
+- CONTRIBUTORS
+- Gemfile
+- LICENSE
+- NOTICE.TXT
+- README.md
+- docs/index.asciidoc
+- lib/logstash-filter-useragent_jars.rb
+- lib/logstash/filters/useragent.rb
+- logstash-filter-useragent.gemspec
+- spec/filters/useragent_spec.rb
+- vendor/jar-dependencies/org/logstash/filters/logstash-filter-useragent/3.1.0/logstash-filter-useragent-3.1.0.jar
+homepage: http://www.elastic.co/guide/en/logstash/current/index.html
+licenses:
+- Apache License (2.0)
+metadata:
+  logstash_plugin: 'true'
+  logstash_group: filter
+post_install_message:
+rdoc_options: []
+require_paths:
+- lib
+- vendor/jar-dependencies
+required_ruby_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+required_rubygems_version: !ruby/object:Gem::Requirement
+  requirements:
+  - - ">="
+    - !ruby/object:Gem::Version
+      version: '0'
+requirements: []
+rubyforge_project:
+rubygems_version: 2.4.8
+signing_key:
+specification_version: 4
+summary: Parse user agent strings into structured data based on BrowserScope data
+test_files:
+- spec/filters/useragent_spec.rb