Skip to content

Update bbot integration to support recent major v2.x release #11741

New issue
New issue
Closed
#11742
Closed
Update bbot integration to support recent major v2.x release#11741
#11742
Labels
release-pending
@colin-stubbs

Description

@colin-stubbs
colin-stubbs
opened on Nov 14, 2024

Purpose

BBOT v2.x has now been available for a number of months and is in production use by many users.

Significant JSON structure and field changes have occurred in the BBOT output modules that necessitates an Elastic integration update.

An update is required that guarantees backwards compatibility with existing BBOX v1.x data as well as new BBOT v2.x data such that it is searchable and not documents are excluded from search results.

HTTP webhook (filebeat http_endpoint) style inputs should be added to the integration to complement the BBOT http output module.

All changes

  • Change follows the contributing guidelines
  • Supported versions of the monitoring target are documented
  • Supported operating systems are documented (if applicable)
  • Integration or System tests exist
  • Documentation exists, useful guidelines to follow
  • Fields follow ECS and naming conventions
  • At least a manual test with ES / Kibana / Agent has been performed.
  • Required Kibana version set to: 8.13.0

Log dataset changes

  • Pipeline tests exist (if applicable)
  • Generated output for at least 1 log file exists

Metadata

Metadata

Assignees

No one assigned

    Labels

    release-pending

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions