From 04320b7644eb6db64db846a2a4fe28e67913f3b5 Mon Sep 17 00:00:00 2001 From: Taylor Swanson <90622908+taylor-swanson@users.noreply.github.com> Date: Wed, 30 Aug 2023 08:32:34 -0500 Subject: [PATCH] [cloudflare] - update package-spec to 2.10.0 (#7600) - Update package-spec to 2.10.0 [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.9.0 -ecs-git-ref=v8.9.0 -format-version=2.10.0 packages/cloudflare --- packages/cloudflare/changelog.yml | 5 ++++ .../data_stream/audit/sample_event.json | 14 +++++----- .../data_stream/logpull/sample_event.json | 14 +++++----- packages/cloudflare/docs/README.md | 28 +++++++++---------- packages/cloudflare/manifest.yml | 4 +-- 5 files changed, 35 insertions(+), 30 deletions(-) diff --git a/packages/cloudflare/changelog.yml b/packages/cloudflare/changelog.yml index 963f9eca2c57..f89cd3b319a6 100644 --- a/packages/cloudflare/changelog.yml +++ b/packages/cloudflare/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.14.0" + changes: + - description: Update package-spec to 2.10.0. + type: enhancement + link: https://github.com/elastic/integrations/pull/7600 - version: "2.13.0" changes: - description: Update package to ECS 8.9.0. diff --git a/packages/cloudflare/data_stream/audit/sample_event.json b/packages/cloudflare/data_stream/audit/sample_event.json index a07377195c00..640efe5925ca 100644 --- a/packages/cloudflare/data_stream/audit/sample_event.json +++ b/packages/cloudflare/data_stream/audit/sample_event.json @@ -1,11 +1,11 @@ { "@timestamp": "2021-11-30T13:42:04.000Z", "agent": { - "ephemeral_id": "cda31903-d3e4-4a1a-acb3-7e49abd31cb8", - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "ephemeral_id": "39e9d205-25b6-4c72-981c-790a9e82c064", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.7.1" + "version": "8.9.1" }, "cloud": { "account": { @@ -36,9 +36,9 @@ "version": "8.9.0" }, "elastic_agent": { - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "snapshot": false, - "version": "8.7.1" + "version": "8.9.1" }, "event": { "action": "rotate_api_key", @@ -46,10 +46,10 @@ "category": [ "iam" ], - "created": "2023-05-30T15:16:32.942Z", + "created": "2023-08-29T18:00:18.207Z", "dataset": "cloudflare.audit", "id": "8d3396e8-c903-5a66-9421-00fc34570550", - "ingested": "2023-05-30T15:16:33Z", + "ingested": "2023-08-29T18:00:19Z", "kind": "event", "original": "{\"action\":{\"info\":\"key digest: c6b5d100d7ce492d24c5b13160fce1cc0092ce7e8d8430e9f5cf5468868be6f6\",\"result\":true,\"type\":\"rotate_API_key\"},\"actor\":{\"email\":\"user@example.com\",\"id\":\"enl3j9du8rnx2swwd9l32qots7l54t9s\",\"ip\":\"52.91.36.10\",\"type\":\"user\"},\"id\":\"8d3396e8-c903-5a66-9421-00fc34570550\",\"interface\":\"\",\"metadata\":{},\"newValue\":\"\",\"oldValue\":\"\",\"owner\":{\"id\":\"enl3j9du8rnx2swwd9l32qots7l54t9s\"},\"resource\":{\"id\":\"enl3j9du8rnx2swwd9l32qots7l54t9s\",\"type\":\"account\"},\"when\":\"2021-11-30T13:42:04Z\"}", "outcome": "success", diff --git a/packages/cloudflare/data_stream/logpull/sample_event.json b/packages/cloudflare/data_stream/logpull/sample_event.json index 6100968dc36b..95744da5e5c5 100644 --- a/packages/cloudflare/data_stream/logpull/sample_event.json +++ b/packages/cloudflare/data_stream/logpull/sample_event.json @@ -1,11 +1,11 @@ { "@timestamp": "2019-08-02T15:29:08.000Z", "agent": { - "ephemeral_id": "942c0900-9eb8-43ac-bf2f-3a7070a381dc", - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "ephemeral_id": "00b965c0-5825-4d93-a9b8-1142d1a47d13", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.7.1" + "version": "8.9.1" }, "client": { "address": "35.232.161.245", @@ -106,9 +106,9 @@ "version": "8.9.0" }, "elastic_agent": { - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "snapshot": false, - "version": "8.7.1" + "version": "8.9.1" }, "event": { "action": [ @@ -119,11 +119,11 @@ "category": [ "network" ], - "created": "2023-05-30T15:16:56.928Z", + "created": "2023-08-29T18:01:11.111Z", "dataset": "cloudflare.logpull", "duration": 0, "end": "2019-08-02T15:29:08.000Z", - "ingested": "2023-05-30T15:16:57Z", + "ingested": "2023-08-29T18:01:14Z", "kind": "event", "original": "{\"CacheCacheStatus\":\"unknown\",\"CacheResponseBytes\":0,\"CacheResponseStatus\":0,\"CacheTieredFill\":false,\"ClientASN\":15169,\"ClientCountry\":\"us\",\"ClientDeviceType\":\"desktop\",\"ClientIP\":\"35.232.161.245\",\"ClientIPClass\":\"noRecord\",\"ClientRequestBytes\":2577,\"ClientRequestHost\":\"cf-analytics.com\",\"ClientRequestMethod\":\"POST\",\"ClientRequestPath\":\"/wp-cron.php\",\"ClientRequestProtocol\":\"HTTP/1.1\",\"ClientRequestReferer\":\"https://cf-analytics.com/wp-cron.php?doing_wp_cron=1564759748.3962020874023437500000\",\"ClientRequestURI\":\"/wp-cron.php?doing_wp_cron=1564759748.3962020874023437500000\",\"ClientRequestUserAgent\":\"WordPress/5.2.2;https://cf-analytics.com\",\"ClientSSLCipher\":\"ECDHE-ECDSA-AES128-GCM-SHA256\",\"ClientSSLProtocol\":\"TLSv1.2\",\"ClientSrcPort\":55028,\"EdgeColoID\":14,\"EdgeEndTimestamp\":\"2019-08-02T15:29:08Z\",\"EdgePathingOp\":\"wl\",\"EdgePathingSrc\":\"filter_based_firewall\",\"EdgePathingStatus\":\"captchaNew\",\"EdgeRateLimitAction\":\"\",\"EdgeRateLimitID\":0,\"EdgeRequestHost\":\"\",\"EdgeResponseBytes\":2848,\"EdgeResponseCompressionRatio\":2.64,\"EdgeResponseContentType\":\"text/html\",\"EdgeResponseStatus\":403,\"EdgeServerIP\":\"\",\"EdgeStartTimestamp\":\"2019-08-02T15:29:08Z\",\"FirewallMatchesActions\":[\"simulate\",\"challenge\"],\"FirewallMatchesRuleIDs\":[\"094b71fea25d4860a61fa0c6fbbd8d8b\",\"e454fd4a0ce546b3a9a462536613692c\"],\"FirewallMatchesSources\":[\"firewallRules\",\"firewallRules\"],\"OriginIP\":\"\",\"OriginResponseBytes\":0,\"OriginResponseHTTPExpires\":\"\",\"OriginResponseHTTPLastModified\":\"\",\"OriginResponseStatus\":0,\"OriginResponseTime\":0,\"OriginSSLProtocol\":\"unknown\",\"ParentRayID\":\"00\",\"RayID\":\"500115ec386354d8\",\"SecurityLevel\":\"med\",\"WAFAction\":\"unknown\",\"WAFFlags\":\"0\",\"WAFMatchedVar\":\"\",\"WAFProfile\":\"unknown\",\"WAFRuleID\":\"\",\"WAFRuleMessage\":\"\",\"WorkerCPUTime\":0,\"WorkerStatus\":\"unknown\",\"WorkerSubrequest\":false,\"WorkerSubrequestCount\":0,\"ZoneID\":155978002}", "start": "2019-08-02T15:29:08.000Z" diff --git a/packages/cloudflare/docs/README.md b/packages/cloudflare/docs/README.md index a8e15d289cee..c4d5c5726652 100644 --- a/packages/cloudflare/docs/README.md +++ b/packages/cloudflare/docs/README.md @@ -146,11 +146,11 @@ An example event for `audit` looks as following: { "@timestamp": "2021-11-30T13:42:04.000Z", "agent": { - "ephemeral_id": "cda31903-d3e4-4a1a-acb3-7e49abd31cb8", - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "ephemeral_id": "39e9d205-25b6-4c72-981c-790a9e82c064", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.7.1" + "version": "8.9.1" }, "cloud": { "account": { @@ -181,9 +181,9 @@ An example event for `audit` looks as following: "version": "8.9.0" }, "elastic_agent": { - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "snapshot": false, - "version": "8.7.1" + "version": "8.9.1" }, "event": { "action": "rotate_api_key", @@ -191,10 +191,10 @@ An example event for `audit` looks as following: "category": [ "iam" ], - "created": "2023-05-30T15:16:32.942Z", + "created": "2023-08-29T18:00:18.207Z", "dataset": "cloudflare.audit", "id": "8d3396e8-c903-5a66-9421-00fc34570550", - "ingested": "2023-05-30T15:16:33Z", + "ingested": "2023-08-29T18:00:19Z", "kind": "event", "original": "{\"action\":{\"info\":\"key digest: c6b5d100d7ce492d24c5b13160fce1cc0092ce7e8d8430e9f5cf5468868be6f6\",\"result\":true,\"type\":\"rotate_API_key\"},\"actor\":{\"email\":\"user@example.com\",\"id\":\"enl3j9du8rnx2swwd9l32qots7l54t9s\",\"ip\":\"52.91.36.10\",\"type\":\"user\"},\"id\":\"8d3396e8-c903-5a66-9421-00fc34570550\",\"interface\":\"\",\"metadata\":{},\"newValue\":\"\",\"oldValue\":\"\",\"owner\":{\"id\":\"enl3j9du8rnx2swwd9l32qots7l54t9s\"},\"resource\":{\"id\":\"enl3j9du8rnx2swwd9l32qots7l54t9s\",\"type\":\"account\"},\"when\":\"2021-11-30T13:42:04Z\"}", "outcome": "success", @@ -437,11 +437,11 @@ An example event for `logpull` looks as following: { "@timestamp": "2019-08-02T15:29:08.000Z", "agent": { - "ephemeral_id": "942c0900-9eb8-43ac-bf2f-3a7070a381dc", - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "ephemeral_id": "00b965c0-5825-4d93-a9b8-1142d1a47d13", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "name": "docker-fleet-agent", "type": "filebeat", - "version": "8.7.1" + "version": "8.9.1" }, "client": { "address": "35.232.161.245", @@ -542,9 +542,9 @@ An example event for `logpull` looks as following: "version": "8.9.0" }, "elastic_agent": { - "id": "b24488e9-8abc-4656-b489-a14346cd8097", + "id": "5607d6f4-6e45-4c33-a087-2e07de5f0082", "snapshot": false, - "version": "8.7.1" + "version": "8.9.1" }, "event": { "action": [ @@ -555,11 +555,11 @@ An example event for `logpull` looks as following: "category": [ "network" ], - "created": "2023-05-30T15:16:56.928Z", + "created": "2023-08-29T18:01:11.111Z", "dataset": "cloudflare.logpull", "duration": 0, "end": "2019-08-02T15:29:08.000Z", - "ingested": "2023-05-30T15:16:57Z", + "ingested": "2023-08-29T18:01:14Z", "kind": "event", "original": "{\"CacheCacheStatus\":\"unknown\",\"CacheResponseBytes\":0,\"CacheResponseStatus\":0,\"CacheTieredFill\":false,\"ClientASN\":15169,\"ClientCountry\":\"us\",\"ClientDeviceType\":\"desktop\",\"ClientIP\":\"35.232.161.245\",\"ClientIPClass\":\"noRecord\",\"ClientRequestBytes\":2577,\"ClientRequestHost\":\"cf-analytics.com\",\"ClientRequestMethod\":\"POST\",\"ClientRequestPath\":\"/wp-cron.php\",\"ClientRequestProtocol\":\"HTTP/1.1\",\"ClientRequestReferer\":\"https://cf-analytics.com/wp-cron.php?doing_wp_cron=1564759748.3962020874023437500000\",\"ClientRequestURI\":\"/wp-cron.php?doing_wp_cron=1564759748.3962020874023437500000\",\"ClientRequestUserAgent\":\"WordPress/5.2.2;https://cf-analytics.com\",\"ClientSSLCipher\":\"ECDHE-ECDSA-AES128-GCM-SHA256\",\"ClientSSLProtocol\":\"TLSv1.2\",\"ClientSrcPort\":55028,\"EdgeColoID\":14,\"EdgeEndTimestamp\":\"2019-08-02T15:29:08Z\",\"EdgePathingOp\":\"wl\",\"EdgePathingSrc\":\"filter_based_firewall\",\"EdgePathingStatus\":\"captchaNew\",\"EdgeRateLimitAction\":\"\",\"EdgeRateLimitID\":0,\"EdgeRequestHost\":\"\",\"EdgeResponseBytes\":2848,\"EdgeResponseCompressionRatio\":2.64,\"EdgeResponseContentType\":\"text/html\",\"EdgeResponseStatus\":403,\"EdgeServerIP\":\"\",\"EdgeStartTimestamp\":\"2019-08-02T15:29:08Z\",\"FirewallMatchesActions\":[\"simulate\",\"challenge\"],\"FirewallMatchesRuleIDs\":[\"094b71fea25d4860a61fa0c6fbbd8d8b\",\"e454fd4a0ce546b3a9a462536613692c\"],\"FirewallMatchesSources\":[\"firewallRules\",\"firewallRules\"],\"OriginIP\":\"\",\"OriginResponseBytes\":0,\"OriginResponseHTTPExpires\":\"\",\"OriginResponseHTTPLastModified\":\"\",\"OriginResponseStatus\":0,\"OriginResponseTime\":0,\"OriginSSLProtocol\":\"unknown\",\"ParentRayID\":\"00\",\"RayID\":\"500115ec386354d8\",\"SecurityLevel\":\"med\",\"WAFAction\":\"unknown\",\"WAFFlags\":\"0\",\"WAFMatchedVar\":\"\",\"WAFProfile\":\"unknown\",\"WAFRuleID\":\"\",\"WAFRuleMessage\":\"\",\"WorkerCPUTime\":0,\"WorkerStatus\":\"unknown\",\"WorkerSubrequest\":false,\"WorkerSubrequestCount\":0,\"ZoneID\":155978002}", "start": "2019-08-02T15:29:08.000Z" diff --git a/packages/cloudflare/manifest.yml b/packages/cloudflare/manifest.yml index dc6160125c35..27721266ddd2 100644 --- a/packages/cloudflare/manifest.yml +++ b/packages/cloudflare/manifest.yml @@ -1,9 +1,9 @@ name: cloudflare title: Cloudflare -version: "2.13.0" +version: "2.14.0" description: Collect logs from Cloudflare with Elastic Agent. type: integration -format_version: 2.7.0 +format_version: 2.10.0 categories: [security, network, cdn_security] conditions: kibana.version: ^8.7.1