From 4fb6c73d0d36724ca4419b1783806d8d5b5f4752 Mon Sep 17 00:00:00 2001 From: Aleksandr Maus Date: Fri, 3 Sep 2021 15:55:03 -0400 Subject: [PATCH] Osquery_manager: Update host.ip field mapping from keyword to ip data type (#1574) * Osquery_manager: Update host.ip field mapping from keyword to ip data type * Update PR number in the changelog * Format ecs.yml --- packages/osquery_manager/changelog.yml | 5 +++++ packages/osquery_manager/data_stream/result/fields/ecs.yml | 4 ++++ packages/osquery_manager/manifest.yml | 2 +- 3 files changed, 10 insertions(+), 1 deletion(-) create mode 100644 packages/osquery_manager/data_stream/result/fields/ecs.yml diff --git a/packages/osquery_manager/changelog.yml b/packages/osquery_manager/changelog.yml index e669411fce74..d4def9413975 100644 --- a/packages/osquery_manager/changelog.yml +++ b/packages/osquery_manager/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "0.5.2" + changes: + - description: Updates host.ip field mapping from keyword to ip data type + type: enhancement + link: https://github.com/elastic/integrations/pull/1574 - version: "0.5.1" changes: - description: Updates mapping and readme for osquery 4.9.0 diff --git a/packages/osquery_manager/data_stream/result/fields/ecs.yml b/packages/osquery_manager/data_stream/result/fields/ecs.yml new file mode 100644 index 000000000000..de74074bbf9a --- /dev/null +++ b/packages/osquery_manager/data_stream/result/fields/ecs.yml @@ -0,0 +1,4 @@ +- name: host.ip + type: ip + description: |- + IP of the host. diff --git a/packages/osquery_manager/manifest.yml b/packages/osquery_manager/manifest.yml index 6fc1dda17fd6..ed3dc78c64b1 100644 --- a/packages/osquery_manager/manifest.yml +++ b/packages/osquery_manager/manifest.yml @@ -1,7 +1,7 @@ format_version: 1.0.0 name: osquery_manager title: Osquery Manager -version: 0.5.1 +version: 0.5.2 license: basic description: This Elastic integration lets you centrally manage osquery deployments, run live queries, and schedule recurring queries type: integration