elastic · taylor-swanson · Jan 23, 2024 · Jan 5, 2024 · Jan 5, 2024 · Jan 5, 2024
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.9.0"
   changes:
     - description: Add support for all the OCSF classes.

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: amazon_security_lake
 title: Amazon Security Lake
-version: "0.9.0"
+version: "1.0.0"
 description: Collect logs from Amazon Security Lake with Elastic Agent.
 type: integration
 categories: ["aws", "security"]

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.10.0"
   changes:
     - description: Add dashboards to integration

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: arista_ngfw
 title: "Arista NG Firewall"
-version: "0.10.0"
+version: "1.0.0"
 source:
   license: "Elastic-2.0"
 description: "Collect logs and metrics from Arista NG Firewall."

diff --git a/packages/aws_logs/changelog.yml b/packages/aws_logs/changelog.yml
@@ -1,3 +1,8 @@
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: 0.6.0
   changes:
     - description: Update the package format_version to 3.0.0.

diff --git a/packages/aws_logs/manifest.yml b/packages/aws_logs/manifest.yml
@@ -3,7 +3,7 @@ name: aws_logs
 title: Custom AWS Logs
 description: Collect raw logs from AWS S3 or CloudWatch with Elastic Agent.
 type: integration
-version: "0.6.0"
+version: "1.0.0"
 categories:
   - observability
   - custom

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.21.1"
   changes:
     - description: Fix exclude_files pattern.

@@ -1,3 +1,7 @@
+dynamic_fields:
+  "@timestamp": "^[0-9]{4}(-[0-9]{2}){2}T[0-9]{2}(:[0-9]{2}){2}\\.[0-9]{3}"
+  cisco_nexus.log.time: "^[0-9]{4}(-[0-9]{2}){2}T[0-9]{2}(:[0-9]{2}){2}\\.[0-9]{3}"
+  cisco_nexus.log.syslog_time: "^[0-9]{4}(-[0-9]{2}){2}T[0-9]{2}(:[0-9]{2}){2}\\.[0-9]{3}"
 fields:
   tags:
     - preserve_original_event

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: cisco_nexus
 title: Cisco Nexus
-version: "0.21.1"
+version: "1.0.0"
 description: Collect logs from Cisco Nexus with Elastic Agent.
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: 0.6.1
   changes:
     - description: Update Kibana version to 8.11.0.

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: entityanalytics_entra_id
 title: "Microsoft Entra ID Entity Analytics"
-version: "0.6.1"
+version: "1.0.0"
 description: "Collect identities from Microsoft Entra ID (formerly Azure Active Directory) with Elastic Agent."
 type: integration
 categories:

@@ -5,7 +5,6 @@ rules:
       - status_code: 200
         body: |
           [{"id":"00ub0oNGTSWTBKOLGLNR","status":"ACTIVE","created":"2013-06-24T16:39:18.000Z","activated":"2013-06-24T16:39:19.000Z","statusChanged":"2013-06-24T16:39:19.000Z","lastLogin":"2013-06-24T17:39:19.000Z","lastUpdated":"2013-07-02T21:36:25.344Z","passwordChanged":"2013-07-02T21:36:25.344Z","profile":{"firstName":"Isaac","lastName":"Brock","email":"isaac.brock@example.com","login":"isaac.brock@example.com","mobilePhone":"555-415-1337"},"credentials":{"password":{"value":"tlpWENT2m"},"recovery_question":{"question":"Who's a major player in the cowboy scene?","answer":"Annie Oakley"},"provider":{"type":"OKTA","name":"OKTA"}}}]
-
   - path: /api/v1/devices
     methods: ["GET"]
     responses:
@@ -16,5 +15,5 @@ rules:
     methods: ["GET"]
     responses:
       - status_code: 200
-        body: |
-          [{"id":"00ub0oNGTSWTBKOLGLNR","status":"ACTIVE","created":"2013-06-24T16:39:18.000Z","activated":"2013-06-24T16:39:19.000Z","statusChanged":"2013-06-24T16:39:19.000Z","lastLogin":"2013-06-24T17:39:19.000Z","lastUpdated":"2013-07-02T21:36:25.344Z","passwordChanged":"2013-07-02T21:36:25.344Z","profile":{"firstName":"Isaac","lastName":"Brock","email":"isaac.brock@example.com","login":"isaac.brock@example.com","mobilePhone":"555-415-1337"},"credentials":{"password":{"value":"tlpWENT2m"},"recovery_question":{"question":"Who's a major player in the cowboy scene?","answer":"Annie Oakley"},"provider":{"type":"OKTA","name":"OKTA"}}}]
+        body: |-
+          [{"id":"00ub0oNGTSWTBKOLGLNR","status":"ACTIVE","created":"2013-06-24T16:39:18.000Z","activated":"2013-06-24T16:39:19.000Z","statusChanged":"2013-06-24T16:39:19.000Z","lastLogin":"2013-06-24T17:39:19.000Z","lastUpdated":"2013-07-02T21:36:25.344Z","passwordChanged":"2013-07-02T21:36:25.344Z","profile":{"firstName":"Isaac","lastName":"Brock","email":"isaac.brock@example.com","login":"isaac.brock@example.com","mobilePhone":"555-415-1337"},"credentials":{"password":{"value":"tlpWENT2m"},"recovery_question":{"question":"Who's a major player in the cowboy scene?","answer":"Annie Oakley"},"provider":{"type":"OKTA","name":"OKTA"}}}]
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: 0.8.0
   changes:
     - description: Allow dataset selection.

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: entityanalytics_okta
 title: Okta Entity Analytics
-version: "0.8.0"
+version: "1.0.0"
 description: "Collect User Identities from Okta with Elastic Agent."
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.9.0"
   changes:
     - description: Limit request tracer log count to five.

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: google_scc
 title: Google Security Command Center
-version: "0.9.0"
+version: "1.0.0"
 description: Collect logs from Google Security Command Center with Elastic Agent.
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.20.2"
   changes:
     - description: Fix exclude_files pattern.

@@ -1,13 +1,15 @@
-format_version: 2.9.0
+format_version: 3.0.0
 name: imperva
 title: Imperva
-version: "0.20.2"
+version: "1.0.0"
 description: Collect logs from Imperva devices with Elastic Agent.
 categories: ["network", "security"]
 type: integration
 conditions:
-  kibana.version: ^8.10.1
-  elastic.subscription: basic
+  kibana:
+    version: ^8.10.1
+  elastic:
+    subscription: basic
 screenshots:
   - src: /img/imperva-securesphere-dashboard.png
     title: Imperva Securesphere Dashboard Screenshot
@@ -34,3 +36,4 @@ policy_templates:
         description: Collecting logs from Imperva SecureSphere via File.
 owner:
   github: elastic/security-external-integrations
+  type: elastic
@@ -0,0 +1,3 @@
+errors:
+  exclude_checks:
+    - SVR00002 # Mandatory filters in dashboards
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: 0.7.0
   changes:
     - description: ECS version updated to 8.11.0.

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: microsoft_defender_cloud
 title: Microsoft Defender for Cloud
-version: "0.7.0"
+version: "1.0.0"
 description: Collect logs from Microsoft Defender for Cloud with Elastic Agent.
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.6.0"
   changes:
     - description: Update the cursor in data collection of the alert data stream and the default value of HTTP Client Timeout.

@@ -1,7 +1,7 @@
 format_version: 2.8.0
 name: prisma_cloud
 title: "Palo Alto Prisma Cloud"
-version: "0.6.0"
+version: "1.0.0"
 description: "Collect logs from Prisma Cloud with Elastic Agent."
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: 0.8.1
   changes:
     - description: Fix mapping of vulnerability type and severity.

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: qualys_vmdr
 title: Qualys VMDR
-version: "0.8.1"
+version: "1.0.0"
 description: Collect data from Qualys VMDR platform with Elastic Agent.
 type: integration
 categories:

diff --git a/packages/sentinel_one_cloud_funnel/changelog.yml b/packages/sentinel_one_cloud_funnel/changelog.yml
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: 0.10.0
   changes:
     - description: Adjust `process.*` fields to support Analyzer.

diff --git a/...ges/sentinel_one_cloud_funnel/data_stream/event/_dev/test/pipeline/test-common-config.yml b/...ges/sentinel_one_cloud_funnel/data_stream/event/_dev/test/pipeline/test-common-config.yml
@@ -23,3 +23,4 @@ dynamic_fields:
   "sentinel_one_cloud_funnel.event.ti_indicator.upload_time": "[0-9]{4}-[0-9]{2}-[0-9]{2}T[0-9]{2}:[0-9]{2}:[0-9]{2}.[0-9]{3}Z"
   "sentinel_one_cloud_funnel.event.ti_indicator.valid_until": "[0-9]{4}-[0-9]{2}-[0-9]{2}T[0-9]{2}:[0-9]{2}:[0-9]{2}.[0-9]{3}Z"
   "sentinel_one_cloud_funnel.event.time": "[0-9]{4}-[0-9]{2}-[0-9]{2}T[0-9]{2}:[0-9]{2}:[0-9]{2}.[0-9]{3}Z"
+  "sentinel_one_cloud_funnel.event.timestamp": "[0-9]{4}-[0-9]{2}-[0-9]{2}T[0-9]{2}:[0-9]{2}:[0-9]{2}.[0-9]{3}Z"
diff --git a/packages/sentinel_one_cloud_funnel/manifest.yml b/packages/sentinel_one_cloud_funnel/manifest.yml
@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: sentinel_one_cloud_funnel
 title: SentinelOne Cloud Funnel
-version: "0.10.0"
+version: "1.0.0"
 description: Collect logs from SentinelOne Cloud Funnel with Elastic Agent.
 type: integration
 categories: ["security", "edr_xdr"]

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.3.0"
   changes:
     - description: Limit request tracer log count to five.

@@ -1,7 +1,7 @@
 format_version: 3.0.0
 name: symantec_edr_cloud
 title: Symantec EDR Cloud
-version: "0.3.0"
+version: "1.0.0"
 source:
   license: Elastic-2.0
 description: Collect logs from Symantec EDR Cloud with Elastic Agent.

@@ -1,3 +1,8 @@
+- version: "1.0.0"
+  changes:
+    - description: Release package as GA.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/8833
 - version: "0.8.0"
   changes:
     - description: Limit request tracer log count to five.

@@ -1,6 +1,6 @@
 name: ti_maltiverse
 title: Maltiverse
-version: "0.8.0"
+version: "1.0.0"
 description: Ingest threat intelligence indicators from Maltiverse feeds with Elastic Agent
 type: integration
 format_version: 3.0.0

@@ -3,12 +3,12 @@ services:
   ti_mandiant_advantage:
     image: docker.elastic.co/observability/stream:v0.6.1
     ports:
-    - 8080
+      - 8080
     volumes:
-    - ./files:/files:ro
+      - ./files:/files:ro
     environment:
       PORT: 8080
     command:
-    - http-server
-    - --addr=:8080
-    - --config=/files/config.yml
+      - http-server
+      - --addr=:8080
+      - --config=/files/config.yml