Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move sysmon edge processing to ingest pipeline #972

Merged
merged 2 commits into from
May 6, 2021
Merged

Move sysmon edge processing to ingest pipeline #972

merged 2 commits into from
May 6, 2021

Conversation

marc-gr
Copy link
Contributor

@marc-gr marc-gr commented May 6, 2021

What does this PR do?

Moves sysmon edge processing to ingest pipelines.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.

@marc-gr marc-gr requested a review from leehinman May 6, 2021 11:01
@elasticmachine
Copy link

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

@elasticmachine
Copy link

elasticmachine commented May 6, 2021
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Build Cause: Pull request #972 updated

  • Start Time: 2021-05-06T14:27:52.648+0000

  • Duration: 12 min 17 sec

  • Commit: 2ad9f9b

Test stats 🧪

Test Results
Failed 0
Passed 39
Skipped 0
Total 39

Trends 🧪

Image of Build Times

Image of Tests

leehinman
leehinman approved these changes May 6, 2021
View reviewed changes
Copy link
Contributor

@leehinman leehinman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good. 2 suggestions.

packages/windows/data_stream/sysmon_operational/elasticsearch/ingest_pipeline/default.yml Outdated Show resolved Hide resolved
packages/windows/data_stream/sysmon_operational/elasticsearch/ingest_pipeline/default.yml Outdated Show resolved Hide resolved
@marc-gr marc-gr requested a review from leehinman May 6, 2021 14:27
leehinman
leehinman approved these changes May 6, 2021
View reviewed changes
Copy link
Contributor

@leehinman leehinman left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@marc-gr marc-gr merged commit 9b706ad into elastic:master May 6, 2021
@marc-gr marc-gr deleted the sysmon-ingest branch May 6, 2021 15:18
eyalkraft pushed a commit to build-security/integrations that referenced this pull request Mar 30, 2022
@marc-gr
Move sysmon edge processing to ingest pipeline (elastic#972)
3629f0b 
* Move sysmon edge processing to ingest pipeline

* Apply suggestions
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@leehinman leehinman leehinman approved these changes

Assignees
No one assigned
Labels
enhancement New feature or request Integration:windows Windows
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@marc-gr @elasticmachine @leehinman