Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Optional user-supplied key/value pairs in output #91

Open
wants to merge 3 commits into
base: master
Choose a base branch
from
Open

Optional user-supplied key/value pairs in output #91

wants to merge 3 commits into from

Conversation

logorrheic
Copy link
Contributor

The user / configuration management system can add additional key/value
pairs which can add useful contextual information to the JSON records
produced.

  • I've read and understood the Contributing guidelines and have done my best effort to follow them.
  • I've read and agree to the Code of Conduct.
  • I've been mindful about doing atomic commits, adding documentation to my changes, not refactoring too much.
  • I've a descriptive title and added any useful information for the reviewer. Where appropriate, I've attached a screenshot and/or screencast (gif preferrably).
  • I've written tests to cover the new code and functionality included in this PR.
  • I've read, agree to, and signed the Contributor License Agreement (CLA).

PR Summary

Adds the ability to add arbitrary key/value pairs to every output record. This capability can add extra contextual information that may be useful for systems processing and classifying audit records.

Related Issues

N/A

Test strategy

Basic test added.

@logorrheic
Optional user-supplied key/value pairs in output
a971a35 
The user / configuration management system can add additional key/value
pairs which can add useful contextual information to the JSON records
produced.
@CLAassistant
Copy link

CLAassistant commented May 3, 2021
edited

CLA assistant check
All committers have signed the CLA.

logorrheic and others added 2 commits August 30, 2022 11:01
@logorrheic
Merge branch 'master' into extras-key-values
d91feeb
@logorrheic
Change name to labels
f164f17 
This makes the feature correspond the ECS base fields of the same name.
@wadey wadey mentioned this pull request Mar 6, 2024
Open
3 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@logorrheic @CLAassistant