logstash_auditor 0.0.14 → 0.0.16
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/README.md +5 -1
- data/lib/logstash_auditor/version.rb +1 -1
- data/logstash_auditor.gemspec +3 -3
- data/sanity/Gemfile +2 -2
- metadata +6 -6
checksums.yaml
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
---
|
|
2
2
|
SHA1:
|
|
3
|
-
metadata.gz:
|
|
4
|
-
data.tar.gz:
|
|
3
|
+
metadata.gz: bef5c376132c73838d26567b3d8709c5d5632af8
|
|
4
|
+
data.tar.gz: bcc641af409d223f63cae61ed50803d8a2c72095
|
|
5
5
|
SHA512:
|
|
6
|
-
metadata.gz:
|
|
7
|
-
data.tar.gz:
|
|
6
|
+
metadata.gz: aadf4d2cce5fd6b1efd7c44ec9432bcb8596417563226d7f17ee9ea91eee04ebf2e201830b060633fcdd7d7e90a202bce0dcd88563f70cd9deb614f1868351e9
|
|
7
|
+
data.tar.gz: 777d9763e97d764e523688d897ad5f4805bdf8810fab06d61590b7692df622d62784b6c488a076f79eee454d6e1ac9315c205e42849b2f6b772593e9d65bc995
|
data/README.md
CHANGED
|
@@ -72,7 +72,9 @@ Audit using the API methods inherited from SoarAuditorApi::AuditorAPI, e.g.:
|
|
|
72
72
|
|
|
73
73
|
```ruby
|
|
74
74
|
require 'logstash_auditor'
|
|
75
|
+
require 'soar_auditing_format'
|
|
75
76
|
require 'time'
|
|
77
|
+
require 'securerandom'
|
|
76
78
|
|
|
77
79
|
class Main
|
|
78
80
|
def test_sanity
|
|
@@ -83,8 +85,10 @@ class Main
|
|
|
83
85
|
"password" => "auditorpassword",
|
|
84
86
|
"timeout" => 3}
|
|
85
87
|
@iut.configure(@logstash_configuration)
|
|
88
|
+
@iut.set_audit_level(:debug)
|
|
86
89
|
|
|
87
|
-
|
|
90
|
+
my_optional_field = SoarAuditingFormatter::Formatter.optional_field_format("mykey", "myfield")
|
|
91
|
+
@iut.debug(SoarAuditingFormatter::Formatter.format(:debug,'my-sanity-service-id',SecureRandom.hex(32),Time.now,"#{my_optional_field} test message with optional field"))
|
|
88
92
|
end
|
|
89
93
|
end
|
|
90
94
|
|
data/logstash_auditor.gemspec
CHANGED
|
@@ -11,7 +11,7 @@ Gem::Specification.new do |spec|
|
|
|
11
11
|
|
|
12
12
|
spec.summary = %q{Logstash implementation of SOAR architecture auditing}
|
|
13
13
|
spec.description = %q{Logstash implementation of SOAR architecture auditing allowing easy publishing of events to a centralized logstash collection engine}
|
|
14
|
-
spec.homepage = "https://github.
|
|
14
|
+
spec.homepage = "https://github.com/hetznerZA/logstash_auditor"
|
|
15
15
|
spec.license = "MIT"
|
|
16
16
|
|
|
17
17
|
spec.files = `git ls-files -z`.split("\x0").reject { |f| f.match(%r{^(test|spec|features)/}) }
|
|
@@ -24,9 +24,9 @@ Gem::Specification.new do |spec|
|
|
|
24
24
|
spec.add_development_dependency "rspec", "~> 3.0"
|
|
25
25
|
spec.add_development_dependency "byebug", "~> 9"
|
|
26
26
|
spec.add_development_dependency "elasticsearch", "~> 1"
|
|
27
|
-
spec.add_development_dependency "soar_auditing_format", "~> 0.0.
|
|
27
|
+
spec.add_development_dependency "soar_auditing_format", "~> 0.0.5"
|
|
28
28
|
|
|
29
29
|
spec.add_dependency "http", "~> 2"
|
|
30
|
-
spec.add_dependency "soar_auditor_api", "~> 0.0.
|
|
30
|
+
spec.add_dependency "soar_auditor_api", "~> 0.0.11"
|
|
31
31
|
|
|
32
32
|
end
|
data/sanity/Gemfile
CHANGED
metadata
CHANGED
|
@@ -1,7 +1,7 @@
|
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
|
2
2
|
name: logstash_auditor
|
|
3
3
|
version: !ruby/object:Gem::Version
|
|
4
|
-
version: 0.0.
|
|
4
|
+
version: 0.0.16
|
|
5
5
|
platform: ruby
|
|
6
6
|
authors:
|
|
7
7
|
- Barney de Villiers
|
|
@@ -86,14 +86,14 @@ dependencies:
|
|
|
86
86
|
requirements:
|
|
87
87
|
- - "~>"
|
|
88
88
|
- !ruby/object:Gem::Version
|
|
89
|
-
version: 0.0.
|
|
89
|
+
version: 0.0.5
|
|
90
90
|
type: :development
|
|
91
91
|
prerelease: false
|
|
92
92
|
version_requirements: !ruby/object:Gem::Requirement
|
|
93
93
|
requirements:
|
|
94
94
|
- - "~>"
|
|
95
95
|
- !ruby/object:Gem::Version
|
|
96
|
-
version: 0.0.
|
|
96
|
+
version: 0.0.5
|
|
97
97
|
- !ruby/object:Gem::Dependency
|
|
98
98
|
name: http
|
|
99
99
|
requirement: !ruby/object:Gem::Requirement
|
|
@@ -114,14 +114,14 @@ dependencies:
|
|
|
114
114
|
requirements:
|
|
115
115
|
- - "~>"
|
|
116
116
|
- !ruby/object:Gem::Version
|
|
117
|
-
version: 0.0.
|
|
117
|
+
version: 0.0.11
|
|
118
118
|
type: :runtime
|
|
119
119
|
prerelease: false
|
|
120
120
|
version_requirements: !ruby/object:Gem::Requirement
|
|
121
121
|
requirements:
|
|
122
122
|
- - "~>"
|
|
123
123
|
- !ruby/object:Gem::Version
|
|
124
|
-
version: 0.0.
|
|
124
|
+
version: 0.0.11
|
|
125
125
|
description: Logstash implementation of SOAR architecture auditing allowing easy publishing
|
|
126
126
|
of events to a centralized logstash collection engine
|
|
127
127
|
email:
|
|
@@ -149,7 +149,7 @@ files:
|
|
|
149
149
|
- sanity/.ruby-version
|
|
150
150
|
- sanity/Gemfile
|
|
151
151
|
- sanity/sanity.rb
|
|
152
|
-
homepage: https://github.
|
|
152
|
+
homepage: https://github.com/hetznerZA/logstash_auditor
|
|
153
153
|
licenses:
|
|
154
154
|
- MIT
|
|
155
155
|
metadata: {}
|