sap-ecs-log-forwarder 1.0.2__py3-none-any.whl → 1.1.0__py3-none-any.whl

sap_ecs_log_forwarder/cli.py

@@ -80,6 +80,49 @@ def list_inputs():
     for i in cfg["inputs"]:
         click.echo(f"- {i['name']} [{i['provider']}]")
 
+@input.command("show")
+@click.argument("name")
+def show_input(name):
+    """Show details of a specific input including its outputs."""
+    cfg = _load_mutable()
+    inp = _find(cfg, name)
+    if not inp:
+        click.echo("Input not found.")
+        return
+    click.echo(f"Input: {inp['name']}")
+    click.echo(f"  Provider: {inp.get('provider', '-')}")
+    if inp.get("queue"):
+        click.echo(f"  Queue: {inp['queue']}")
+    if inp.get("subscription"):
+        click.echo(f"  Subscription: {inp['subscription']}")
+    if inp.get("region"):
+        click.echo(f"  Region: {inp['region']}")
+    if inp.get("bucket"):
+        click.echo(f"  Bucket: {inp['bucket']}")
+    if inp.get("storageAccount"):
+        click.echo(f"  Storage Account: {inp['storageAccount']}")
+    click.echo(f"  Max Retries: {inp.get('maxRetries', '-')}")
+    click.echo(f"  Retry Delay: {inp.get('retryDelay', '-')}")
+    click.echo(f"  Log Level: {inp.get('logLevel', '-')}")
+    inc = ", ".join(inp.get("includeFilter", [])) or "-"
+    exc = ", ".join(inp.get("excludeFilter", [])) or "-"
+    click.echo(f"  Include Filter: {inc}")
+    click.echo(f"  Exclude Filter: {exc}")
+    click.echo(f"  Authentication: {'configured' if inp.get('authentication') else 'not configured'}")
+    outs = inp.get("outputs", [])
+    if not outs:
+        click.echo("  Outputs: none")
+    else:
+        click.echo("  Outputs:")
+        for idx, o in enumerate(outs):
+            dest = o.get("destination", "")
+            out_inc = ", ".join(o.get("includeFilter", [])) or "-"
+            out_exc = ", ".join(o.get("excludeFilter", [])) or "-"
+            if o["type"] == "sentinel":
+                click.echo(f"    [{idx}] {o['type']} -> {o.get('sentinel_dce_log_ingestion_url', '')} (include: {out_inc}; exclude: {out_exc})")
+            else:
+                click.echo(f"    [{idx}] {o['type']} -> {dest} (include: {out_inc}; exclude: {out_exc})")
+
 @input.command("remove")
 @click.argument("name")
 def remove_input(name):
@@ -98,12 +141,19 @@ def output():
 
 @output.command("add")
 @click.option("--input-name", prompt=True)
-@click.option("--type", "otype", type=click.Choice(["files","http","console"]), prompt=True)
+@click.option("--type", "otype", type=click.Choice(["files","http","console","sentinel"]), prompt=True)
 @click.option("--destination", help="For files/http")
 @click.option("--compress", is_flag=True, default=False)
 @click.option("--include", "include_filters", multiple=True, help="Regex include filter(s) for output (can be repeated)")
 @click.option("--exclude", "exclude_filters", multiple=True, help="Regex exclude filter(s) for output (can be repeated)")
-def add_output(input_name, otype, destination, compress, include_filters, exclude_filters):
+@click.option("--sentinel-dce-tenant-id", help="Sentinel DCE tenant ID")
+@click.option("--sentinel-dce-app-id", help="Sentinel DCE application/client ID")
+@click.option("--sentinel-dce-app-secret", help="Sentinel DCE application secret")
+@click.option("--sentinel-dce-ingestion-url", help="Sentinel DCE log ingestion URL")
+@click.option("--sentinel-dce-dcr-immutable-id", help="Sentinel DCE DCR immutable ID")
+def add_output(input_name, otype, destination, compress, include_filters, exclude_filters,
+               sentinel_dce_tenant_id, sentinel_dce_app_id, sentinel_dce_app_secret, sentinel_dce_ingestion_url,
+               sentinel_dce_dcr_immutable_id):
     cfg = _load_mutable()
     inp = _find(cfg, input_name)
     if not inp:
@@ -114,6 +164,17 @@ def add_output(input_name, otype, destination, compress, include_filters, exclud
         out["destination"] = destination or click.prompt("Destination")
     if otype == "files":
         out["compress"] = compress
+    if otype == "sentinel":
+        key = get_active_key()
+        if not key:
+            click.echo("Encryption key not set (env FORWARDER_ENCRYPTION_KEY).")
+            return
+        out["sentinel_dce_tenant_id"] = "enc:" + encrypt_value(sentinel_dce_tenant_id or click.prompt("Sentinel DCE tenant ID"), key)
+        out["sentinel_dce_application_id"] = "enc:" + encrypt_value(sentinel_dce_app_id or click.prompt("Sentinel DCE application/client ID"), key)
+        out["sentinel_dce_application_secret"] = "enc:" + encrypt_value(sentinel_dce_app_secret or click.prompt("Sentinel DCE application secret", hide_input=True), key)
+        out["sentinel_dce_log_ingestion_url"] = sentinel_dce_ingestion_url or click.prompt("Sentinel DCE log ingestion URL")
+        out["sentinel_dce_dcr_immutable_id"] = sentinel_dce_dcr_immutable_id or click.prompt("Sentinel DCE DCR immutable ID")
+        out["sentinel_dce_dcr_stream_id"] = "Custom-SAPLogServ_CL"
 
     # Attach output-level filters if provided
     if include_filters:
@@ -124,6 +185,17 @@ def add_output(input_name, otype, destination, compress, include_filters, exclud
     if otype in ("files","http") and not out.get("destination"):
         click.echo("Destination required.")
         return
+    
+    if otype == "sentinel":
+        missing = []
+        for field in ["sentinel_dce_tenant_id", "sentinel_dce_application_id", "sentinel_dce_application_secret",
+                      "sentinel_dce_log_ingestion_url", "sentinel_dce_dcr_immutable_id", "sentinel_dce_dcr_stream_id"]:
+            if not out.get(field):
+                missing.append(field)
+        if missing:
+            click.echo(f"Missing required sentinel fields: {', '.join(missing)}")
+            return
+
     inp.setdefault("outputs", []).append(out)
     save_config(cfg)
     click.echo("Output added.")
@@ -145,6 +217,47 @@ def list_outputs(input_name):
         exc = ", ".join(o.get("excludeFilter", [])) or "-"
         click.echo(f"[{idx}] {o['type']} -> {o.get('destination','')} (include: {inc}; exclude: {exc})")
 
+@output.command("show")
+@click.option("--input-name", prompt=True)
+@click.option("--index", type=int, prompt=True)
+def show_output(input_name, index):
+    """Show details of a specific output by input name and index."""
+    cfg = _load_mutable()
+    inp = _find(cfg, input_name)
+    if not inp:
+        click.echo("Input not found.")
+        return
+    outs = inp.get("outputs", [])
+    if not (0 <= index < len(outs)):
+        click.echo("Invalid index.")
+        return
+    o = outs[index]
+    click.echo(f"Output [{index}]:")
+    click.echo(f"  Type: {o.get('type', '-')}")
+    if o.get("destination"):
+        click.echo(f"  Destination: {o['destination']}")
+    if o.get("compress"):
+        click.echo(f"  Compress: {o['compress']}")
+    if o.get("type") == "sentinel":
+        click.echo(f"  Tenant ID: {o.get('sentinel_dce_tenant_id', '-')}")
+        click.echo(f"  Application ID: {o.get('sentinel_dce_application_id', '-')}")
+        click.echo(f"  Log Ingestion URL: {o.get('sentinel_dce_log_ingestion_url', '-')}")
+        click.echo(f"  DCR Immutable ID: {o.get('sentinel_dce_dcr_immutable_id', '-')}")
+        click.echo(f"  DCR Stream ID: {o.get('sentinel_dce_dcr_stream_id', '-')}")
+    if o.get("authorization"):
+        auth = o["authorization"]
+        click.echo(f"  Authorization: {auth.get('type', '-')} ({'encrypted' if auth.get('encrypted') else 'plain'})")
+    if o.get("tls"):
+        tls = o["tls"]
+        click.echo(f"  TLS Client Cert: {tls.get('pathToClientCert', '-')}")
+        click.echo(f"  TLS Client Key: {tls.get('pathToClientKey', '-')}")
+        click.echo(f"  TLS CA Cert: {tls.get('pathToCACert', '-')}")
+        click.echo(f"  TLS Insecure Skip Verify: {tls.get('insecureSkipVerify', False)}")
+    inc = ", ".join(o.get("includeFilter", [])) or "-"
+    exc = ", ".join(o.get("excludeFilter", [])) or "-"
+    click.echo(f"  Include Filter: {inc}")
+    click.echo(f"  Exclude Filter: {exc}")
+
 @output.command("remove")
 @click.option("--input-name", prompt=True)
 @click.option("--index", type=int, prompt=True)

sap_ecs_log_forwarder/processor.py

@@ -4,6 +4,7 @@ import requests
 import gzip
 
 from sap_ecs_log_forwarder import metrics
+from sap_ecs_log_forwarder.processor_sentinel import send_sentinel_dce
 from sap_ecs_log_forwarder.crypto import decrypt_value_if_needed
 from sap_ecs_log_forwarder.utils import compile_filters, is_relevant
 
@@ -84,6 +85,7 @@ OUTPUT_HANDLERS = {
     "files": write_file,
     "http": send_http,
     "console": send_console,
+    "sentinel": send_sentinel_dce,
 }
 
 def emit(lines, source_name, outputs):

sap_ecs_log_forwarder/processor_sentinel.py

@@ -0,0 +1,230 @@
+"""
+Sentinel Log Ingestion Processor
+This module handles sending log data to Azure Monitor / Microsoft Sentinel
+via the Log Ingestion API.
+Note: This implementation is based on the C# implementation in [JsonProcessor.cs](https://github.com/ulkeba/json-to-law_function/blob/v0.2/JsonProcessor.cs)
+"""
+
+import json
+import logging
+import os
+from datetime import datetime, timedelta, timezone
+from typing import Iterable, Optional
+
+import requests
+from azure.identity import ClientSecretCredential, DefaultAzureCredential
+from azure.core.credentials import AccessToken
+
+from sap_ecs_log_forwarder import metrics
+from sap_ecs_log_forwarder.crypto import decrypt_value_if_needed
+
+class SentinelProcessor:
+    """
+    Processes and sends log lines to a Data Colletion Endpoint, to make them 
+    available through Azure Monitor / Microsoft Sentinel.
+    
+    Supports authentication via:
+    - Client credentials (tenant_id, client_id, client_secret)
+    - DefaultAzureCredential (e.g., managed identity, Azure CLI login, etc.)
+    """
+
+    MONITOR_SCOPE = "https://monitor.azure.com//.default"
+    DEFAULT_BATCH_SIZE = 90
+    TOKEN_REFRESH_BUFFER_MINUTES = 5
+
+    # Cached token (class-level to persist across instances)
+    _monitor_token: Optional[AccessToken] = None
+
+    def __init__(self, cfg: dict, logger: Optional[logging.Logger] = None):
+        """
+        Initialize the Sentinel processor.
+        
+        Args:
+            cfg: Configuration dictionary with keys:
+                - sentinel_dce_tenant_id: Azure AD tenant ID
+                - sentinel_dce_application_id: Azure AD client/application ID
+                - sentinel_dce_application_secret: Azure AD client secret
+                - sentinel_dce_log_ingestion_url: Azure Monitor Data Collection Endpoint URL
+                - sentinel_dce_dcr_immutable_id: Data Collection Rule immutable ID
+                - sentinel_dce_dcr_stream_id: Data Collection Rule stream ID
+                - batch_size: Number of lines per batch (default: 90)
+            logger: Optional logger instance
+        """
+        self.cfg = cfg
+        self.log = logger or logging.getLogger(__name__)
+
+        # Load configuration from cfg or environment variables
+        self._sentinel_dce_tenant_id = cfg.get("sentinel_dce_tenant_id")
+        self._sentinel_dce_application_id = cfg.get("sentinel_dce_application_id")
+        self._sentinel_dce_application_secret = cfg.get("sentinel_dce_application_secret")
+        self._sentinel_dce_log_ingestion_url = cfg.get("sentinel_dce_log_ingestion_url")
+        self._sentinel_dce_dcr_immutable_id = cfg.get("sentinel_dce_dcr_immutable_id")
+        self._sentinel_dce_dcr_stream_id = cfg.get("sentinel_dce_dcr_stream_id")
+
+        # Validate required configuration
+        required_fields = {
+            "sentinel_dce_tenant_id": self._sentinel_dce_tenant_id,
+            "sentinel_dce_application_id": self._sentinel_dce_application_id,
+            "sentinel_dce_application_secret": self._sentinel_dce_application_secret,
+            "sentinel_dce_log_ingestion_url": self._sentinel_dce_log_ingestion_url,
+            "sentinel_dce_dcr_immutable_id": self._sentinel_dce_dcr_immutable_id,
+            "sentinel_dce_dcr_stream_id": self._sentinel_dce_dcr_stream_id,
+        }
+        missing_fields = [name for name, value in required_fields.items() if not value]
+        if missing_fields:
+            raise ValueError(f"Missing required configuration: {', '.join(missing_fields)}")
+
+        self._log_ingestion_endpoint =  f"{self._sentinel_dce_log_ingestion_url}/dataCollectionRules/{self._sentinel_dce_dcr_immutable_id}/streams/{self._sentinel_dce_dcr_stream_id}?api-version=2023-01-01"
+        self._batch_size = cfg.get("batch_size", self.DEFAULT_BATCH_SIZE)
+
+    def process_lines(self, lines: Iterable[str]) -> None:
+        """
+        Process log lines and send them in batches to Azure Monitor.
+        
+        Args:
+            lines: Iterable of log line strings (should be valid JSON)
+        """
+        processed_lines = 0
+        batch_num = 0
+        batch_items = []
+
+        for line in lines:
+            batch_items.append(line)
+            processed_lines += 1
+
+            if processed_lines % self._batch_size == 0:
+                self.log.info(
+                    "[sentinel, SendBatchToMonitor] Processed %d lines. Sending batch %d to monitor...",
+                    processed_lines, batch_num
+                )
+
+                self._stream_to_monitor(batch_items)
+                metrics.inc("sentinel_batch_sent")
+
+                batch_num += 1
+                batch_items = []
+
+        # Send remaining items in final batch
+        if batch_items:
+            self.log.info(
+                "[sentinel, SendBatchToMonitor] Processed %d lines. Sending final batch %d to monitor...",
+                processed_lines, batch_num
+            )
+            self._stream_to_monitor(batch_items)
+            metrics.inc("sentinel_batch_sent")
+            batch_num += 1
+
+        self.log.info(
+            "[sentinel, BlobProcessingCompleted] Finished processing. Total processed lines: %d, Total batches sent: %d.",
+            processed_lines, batch_num
+        )
+
+    def _stream_to_monitor(self, batch_items: list) -> None:
+        """
+        Send a batch of log items to Azure Monitor.
+        
+        Args:
+            batch_items: List of log line strings to send
+        """
+        try:
+            access_token = self._get_monitor_token()
+
+            headers = {
+                "Authorization": f"Bearer {access_token}",
+                "Content-Type": "application/json"
+            }
+
+            # Build JSON array payload
+            payload = "[" + ", ".join(batch_items) + "]"
+
+            self.log.info(
+                "[sentinel, SendingToAzureMonitor] Sending payload to %s...",
+                self._log_ingestion_endpoint
+            )
+
+            response = requests.post(
+                self._log_ingestion_endpoint,
+                data=payload,
+                headers=headers,
+                timeout=30
+            )
+
+            self.log.info(
+                "[sentinel, SendingToAzureMonitor] Result code is %s...",
+                response.status_code
+            )
+
+            response.raise_for_status()
+            metrics.inc("sentinel_send_success")
+
+        except requests.exceptions.RequestException as e:
+            self.log.error("Failed to send to Azure Monitor: %s", str(e))
+            metrics.inc("sentinel_send_error")
+            raise
+        except Exception as e:
+            self.log.error("Unexpected error sending to Azure Monitor: %s", str(e))
+            metrics.inc("sentinel_send_error")
+            raise
+
+    def _get_monitor_token(self) -> str:
+        """
+        Get or refresh the Azure Monitor access token.
+        
+        Returns:
+            Valid access token string
+        """
+        now = datetime.now(timezone.utc)
+        token_expiry_buffer = timedelta(minutes=self.TOKEN_REFRESH_BUFFER_MINUTES)
+        expiry_threshold = (now + token_expiry_buffer).timestamp()
+
+        # Check if we need to refresh the token
+        if (SentinelProcessor._monitor_token is None or 
+            SentinelProcessor._monitor_token.expires_on < expiry_threshold):
+
+            credential = self._get_credential()
+
+            self.log.debug("[sentinel, AzureMonitorCredentials] Requesting new token from Azure...")
+            SentinelProcessor._monitor_token = credential.get_token(self.MONITOR_SCOPE)
+            self.log.info("[sentinel, AzureMonitorCredentials] Token acquired, expires at %s", 
+                         SentinelProcessor._monitor_token.expires_on)
+        else:
+            self.log.info("[sentinel, AzureMonitorCredentials] Using cached token for Azure Monitor...")
+
+        return SentinelProcessor._monitor_token.token
+
+    def _get_credential(self):
+        """
+        Get the appropriate Azure credential based on configuration.
+        
+        Returns:
+            Azure credential object (ClientSecretCredential or DefaultAzureCredential)
+        """
+        if self._sentinel_dce_application_secret and self._sentinel_dce_application_id and self._sentinel_dce_tenant_id:
+            self.log.info(
+                "[sentinel, AzureMonitorCredentials] Using ClientSecretCredential with Tenant ID %s, Client ID %s to get new token for Azure Monitor...",
+                self._sentinel_dce_tenant_id, self._sentinel_dce_application_id
+            )
+            return ClientSecretCredential(
+                tenant_id=decrypt_value_if_needed(self._sentinel_dce_tenant_id),
+                client_id=decrypt_value_if_needed(self._sentinel_dce_application_id),
+                client_secret=decrypt_value_if_needed(self._sentinel_dce_application_secret)
+            )
+        else:
+            self.log.info(
+                "[sentinel, AzureMonitorCredentials] Using DefaultAzureCredential to get new token for Azure Monitor..."
+            )
+            return DefaultAzureCredential()
+
+
+def send_sentinel_dce(lines: Iterable[str], cfg: dict) -> None:
+    """
+    Output handler function for sending logs to Azure Sentinel.
+    
+    This function is designed to be used as an output handler in the processor module.
+    
+    Args:
+        lines: Iterable of log line strings
+        cfg: Configuration dictionary with sentinel-specific settings
+    """
+    processor = SentinelProcessor(cfg)
+    processor.process_lines(lines)

{sap_ecs_log_forwarder-1.0.2.dist-info → sap_ecs_log_forwarder-1.1.0.dist-info}/METADATA

@@ -1,6 +1,6 @@
 Metadata-Version: 2.1
 Name: sap-ecs-log-forwarder
-Version: 1.0.2
+Version: 1.1.0
 Summary: A package to consume events from an AWS SQS queue, Azure Storage Account Topic and GCP PubSub Topic, process log files, and forward them to a HTTP endpoint or file.
 Home-page: https://www.sap.com/
 License: SAP DEVELOPER LICENSE AGREEMENT
@@ -20,6 +20,7 @@ Classifier: Programming Language :: Python :: 3.13
 Classifier: Programming Language :: Python :: 3.14
 Classifier: Topic :: Software Development :: Libraries :: Python Modules
 Requires-Dist: aiohttp (>=3.13.2,<4.0.0)
+Requires-Dist: azure-identity (>=1.25.1,<2.0.0)
 Requires-Dist: azure-storage-blob (>=12.27.1,<13.0.0)
 Requires-Dist: azure-storage-queue (>=12.14.1,<13.0.0)
 Requires-Dist: boto3 (>=1.17.49,<2.0.0)
@@ -38,13 +39,13 @@ Unified Python service that consumes object / blob creation events from:
 - GCP Pub/Sub (Cloud Storage OBJECT_FINALIZE)
 - Azure Queue (Storage BlobCreated events)
 
-Downloads referenced log files, decompresses if gzip, splits into lines, and forwards each line to configured outputs (HTTP, files, console). Provides structured JSON logging, in‑memory metrics, regex filtering, encrypted credentials, jittered retries, and a configuration CLI.
+Downloads referenced log files, decompresses if gzip, splits into lines, and forwards each line to configured outputs (HTTP, files, console, sentinel). Provides structured JSON logging, in‑memory metrics, regex filtering, encrypted credentials, jittered retries, and a configuration CLI.
 
 ## Features
 - Single `config.json` drives all cloud provider inputs.
 - Per input regex filters: include / exclude.
 - Output‑level filters (include / exclude) per output.
-- Outputs: http, files, console (multiple per input).
+- Outputs: http, files, console, sentinel (multiple per input).
 - HTTP output supports TLS client certs, custom CA, and insecure skip verify.
 - Encrypted credentials stored inline (Fernet) using `enc:` prefix.
 - Structured JSON logging (console by default, optional file target).
@@ -128,6 +129,35 @@ Provider authentication fields:
 - GCP: serviceAccountJson (raw JSON string encrypted)
 All optionally encrypted with `enc:` prefix.
 
+### Sending logs to Sentinel 
+
+To send logs to an Azure Log Analytics Workspace for further analysis with Sentinel, set up the "SAP LogServ (RISE), S/4 HANA Cloud Private Edition" from the Microsoft Sentinel Content Hub as described [here](https://community.sap.com/t5/enterprise-resource-planning-blog-posts-by-sap/sap-logserv-integration-with-microsoft-sentinel-for-sap-rise-customers-is/ba-p/14085387). The deployment will provide the values for all `sentinel_...`-prefixed properties shown in the code snippet to define the `sentinel` output type below.
+
+```
+{
+  ...
+  "inputs": [
+    {
+      ...
+      "outputs": [
+        {
+          "type": "sentinel",
+          "includeFilter": [],
+          "excludeFilter": [],
+          "sentinel_dce_tenant_id": "<Destination tenant ID>",
+          "sentinel_dce_application_id": "<Destination Application / client ID>",
+          "sentinel_dce_application_secret": "<Destination client secret>",
+          "sentinel_dce_log_ingestion_url": "<Log ingestion base URL>",
+          "sentinel_dce_dcr_immutable_id": "<Data Collection Rule immutable ID>",
+          "sentinel_dce_dcr_stream_id": "Custom-SAPLogServ_CL"
+        }
+      ]
+    }
+  ]
+}
+```
+
+
 ## Installation
 ### With direct internet access:
 ```sh
@@ -175,6 +205,11 @@ List inputs:
 sap-ecs-config-cli input list
 ```
 
+Show input:
+```bash
+sap-ecs-config-cli input show aws1
+```
+
 Remove input:
 ```bash
 sap-ecs-config-cli input remove aws1
@@ -186,11 +221,27 @@ sap-ecs-config-cli output add --input-name aws1 --type http --destination https:
   --include prod --exclude test
 ```
 
+Add output for ingestion into Microsoft Sentinel via Data Collection Endpoint (DCE):
+```bash
+sap-ecs-config-cli output add --input-name azure1 \
+  --type sentinel \
+  --sentinel-dce-tenant-id "11111111-2222-3333-4444-555555555555" \
+  --sentinel-dce-app-id "11111111-2222-3333-4444-555555555555" \
+  --sentinel-dce-app-secret "the-secret" \
+  --sentinel-dce-ingestion-url "https://asi-....ingest.monitor.azure.com" \
+  --sentinel-dce-dcr-immutable-id "dcr-..."
+```
+
 List outputs:
 ```bash
 sap-ecs-config-cli output list aws1
 ```
 
+Show output:
+```bash
+sap-ecs-config-cli output show --input-name aws1 --index 0
+```
+
 Set HTTP authorization (encrypted):
 ```bash
 sap-ecs-config-cli creds set-http-auth --input-name aws1 --output-index 0 --auth-type bearer
@@ -629,6 +680,10 @@ This application and its source code are licensed under the terms of the SAP Dev
 
 ## Changelog
 
+**Version 1.1.0**
+
+- Added output type `sentinel` to ingest data into a Microsoft Sentinel deployment through the solution "SAP LogServ (RISE), S/4 HANA Cloud Private Edition" from the Microsoft Sentinel Content Hub as described [here](https://community.sap.com/t5/enterprise-resource-planning-blog-posts-by-sap/sap-logserv-integration-with-microsoft-sentinel-for-sap-rise-customers-is/ba-p/14085387). 
+
 **Version 1.0.2**
 
 - Solving minor issue to avoid data loss when HTTP destination is unavailable

{sap_ecs_log_forwarder-1.0.2.dist-info → sap_ecs_log_forwarder-1.1.0.dist-info}/RECORD

@@ -2,17 +2,18 @@ sap_ecs_log_forwarder/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3h
 sap_ecs_log_forwarder/aws.py,sha256=1DXtV1aAbmciCxoU3T99nXPH0cXIbCu1DOV85j-RpsU,10149
 sap_ecs_log_forwarder/azure.py,sha256=ZeOltwwZHQXVIZZ7TKzO4px5VGFqnH3kAYKWRwhP0Z0,12099
 sap_ecs_log_forwarder/base_runner.py,sha256=PVCpKcUtRO5v-_7oD5kN6Ty-P5URwesU17_BjraHB3c,586
-sap_ecs_log_forwarder/cli.py,sha256=MmPTP0UDtqlPQEYA0lRy_7qeTFne8dQIajxddhABYHQ,11718
+sap_ecs_log_forwarder/cli.py,sha256=53d8N9ckl_AxWJWV4eVCOUhNFsyFCIYUhjUzeP3oOFU,17582
 sap_ecs_log_forwarder/config.py,sha256=_zr48_xDn2XEPwpNnQelaBBZXU5SVa6cJPAzNTaM9hk,3446
 sap_ecs_log_forwarder/consumer.py,sha256=ODdlThC-yzi1A5MdZcrlaoWiIC9y9C2R7hEoTCxh2vI,1738
 sap_ecs_log_forwarder/crypto.py,sha256=MCn2K3PLecRdmtW-6yvT-5hlLHWdVhNUH83OlqYNitA,1104
 sap_ecs_log_forwarder/gcp.py,sha256=0MP0izDIBvUo7ZuGIDOQvrk9CxIe9zHdvDUhVDqNcTM,4449
 sap_ecs_log_forwarder/json_logging.py,sha256=2kLmBfhq-qlj0Lmm1fPKz6qDLFJxV0Ga37JklrYFrL4,1308
 sap_ecs_log_forwarder/metrics.py,sha256=XkEBsVA9RuLucEU_8TCdeNSrJXB3dNThGsgubVkyZiw,871
-sap_ecs_log_forwarder/processor.py,sha256=-ooEdhVcyhj5g07lk3R3DQahtGLxIWWBD2KdTi75iAA,4127
+sap_ecs_log_forwarder/processor.py,sha256=HAMMBLUAMhN_7CnuKeo3V9lcIsoybsOI_R48fdbnakY,4233
+sap_ecs_log_forwarder/processor_sentinel.py,sha256=LV9c31Ku-JKfIS07FcJGOMAq8ww6LdGan_1yasNTS8M,9441
 sap_ecs_log_forwarder/utils.py,sha256=mVKEEjUfWjQGBn4OsvIDCeNysjEkU1x3loJ1A8IMCKs,852
-sap_ecs_log_forwarder-1.0.2.dist-info/LICENSE,sha256=RTHTDJe35fXCEJkg3wT9DHAO8QQZWRNd9NELcyj4jN0,13528
-sap_ecs_log_forwarder-1.0.2.dist-info/METADATA,sha256=1Q6tU3twksQK5eKyK47sacM4ks_nZCe16W0ZFIvjtvI,20333
-sap_ecs_log_forwarder-1.0.2.dist-info/WHEEL,sha256=sP946D7jFCHeNz5Iq4fL4Lu-PrWrFsgfLXbbkciIZwg,88
-sap_ecs_log_forwarder-1.0.2.dist-info/entry_points.txt,sha256=NHEVCnnKA3LQ-vynlLo2sf9hOGhbNrricddmwY8JQeA,129
-sap_ecs_log_forwarder-1.0.2.dist-info/RECORD,,
+sap_ecs_log_forwarder-1.1.0.dist-info/LICENSE,sha256=RTHTDJe35fXCEJkg3wT9DHAO8QQZWRNd9NELcyj4jN0,13528
+sap_ecs_log_forwarder-1.1.0.dist-info/METADATA,sha256=-sCVQOMb9WcCsk7qyi0g8WBNsLvyzPi8xKmN7etNpNA,22612
+sap_ecs_log_forwarder-1.1.0.dist-info/WHEEL,sha256=sP946D7jFCHeNz5Iq4fL4Lu-PrWrFsgfLXbbkciIZwg,88
+sap_ecs_log_forwarder-1.1.0.dist-info/entry_points.txt,sha256=NHEVCnnKA3LQ-vynlLo2sf9hOGhbNrricddmwY8JQeA,129
+sap_ecs_log_forwarder-1.1.0.dist-info/RECORD,,