diff --git a/packages/1password/changelog.yml b/packages/1password/changelog.yml index 376d8c5444d..187e73d5fed 100644 --- a/packages/1password/changelog.yml +++ b/packages/1password/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.30.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.29.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/1password/data_stream/audit_events/elasticsearch/ingest_pipeline/default.yml b/packages/1password/data_stream/audit_events/elasticsearch/ingest_pipeline/default.yml index 5acc6024ee6..e63ba1a3409 100644 --- a/packages/1password/data_stream/audit_events/elasticsearch/ingest_pipeline/default.yml +++ b/packages/1password/data_stream/audit_events/elasticsearch/ingest_pipeline/default.yml @@ -125,11 +125,6 @@ processors: - onepassword.user - onepassword.location # Use the included GeoIP processor ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true on_failure: - set: field: event.kind diff --git a/packages/1password/data_stream/item_usages/elasticsearch/ingest_pipeline/default.yml b/packages/1password/data_stream/item_usages/elasticsearch/ingest_pipeline/default.yml index 8008a866130..9f4f9d175d9 100644 --- a/packages/1password/data_stream/item_usages/elasticsearch/ingest_pipeline/default.yml +++ b/packages/1password/data_stream/item_usages/elasticsearch/ingest_pipeline/default.yml @@ -126,11 +126,6 @@ processors: - onepassword.user - onepassword.location # Use the included GeoIP processor ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true on_failure: - set: field: event.kind diff --git a/packages/1password/data_stream/signin_attempts/elasticsearch/ingest_pipeline/default.yml b/packages/1password/data_stream/signin_attempts/elasticsearch/ingest_pipeline/default.yml index ef7034a3696..af678d25914 100644 --- a/packages/1password/data_stream/signin_attempts/elasticsearch/ingest_pipeline/default.yml +++ b/packages/1password/data_stream/signin_attempts/elasticsearch/ingest_pipeline/default.yml @@ -140,11 +140,6 @@ processors: - onepassword.target_user - onepassword.location # Use the included GeoIP processor ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true on_failure: - set: field: event.kind diff --git a/packages/1password/manifest.yml b/packages/1password/manifest.yml index 252412719fa..9c431085731 100644 --- a/packages/1password/manifest.yml +++ b/packages/1password/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: 1password title: "1Password" -version: "1.29.0" +version: "1.30.0" description: Collect logs from 1Password with Elastic Agent. type: integration categories: diff --git a/packages/activemq/changelog.yml b/packages/activemq/changelog.yml index d6d9177b711..954ffbe13c1 100644 --- a/packages/activemq/changelog.yml +++ b/packages/activemq/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.6.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: 1.5.0 changes: - description: Add processor support for broker, queue and topic data streams. diff --git a/packages/activemq/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/activemq/data_stream/audit/elasticsearch/ingest_pipeline/default.yml index b1da80ef4e9..6d7d959fc67 100644 --- a/packages/activemq/data_stream/audit/elasticsearch/ingest_pipeline/default.yml +++ b/packages/activemq/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -62,11 +62,6 @@ processors: return false; } drop(ctx); - - remove: - field: event.original - if: "ctx.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_missing: true - ignore_failure: true on_failure: - set: field: error.message diff --git a/packages/activemq/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/activemq/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 07710be689d..971b96dafb3 100644 --- a/packages/activemq/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/activemq/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -77,11 +77,6 @@ processors: return false; } drop(ctx); - - remove: - field: event.original - if: "ctx.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true on_failure: - set: field: error.message diff --git a/packages/activemq/manifest.yml b/packages/activemq/manifest.yml index 6de65596daa..91278a7a331 100644 --- a/packages/activemq/manifest.yml +++ b/packages/activemq/manifest.yml @@ -1,6 +1,6 @@ name: activemq title: ActiveMQ -version: "1.5.0" +version: "1.6.0" description: Collect logs and metrics from ActiveMQ instances with Elastic Agent. type: integration icons: diff --git a/packages/akamai/changelog.yml b/packages/akamai/changelog.yml index abd2a2b028a..f961e71a1d2 100644 --- a/packages/akamai/changelog.yml +++ b/packages/akamai/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.25.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "2.24.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/akamai/data_stream/siem/elasticsearch/ingest_pipeline/default.yml b/packages/akamai/data_stream/siem/elasticsearch/ingest_pipeline/default.yml index c9624ee5e76..c658cd4a748 100644 --- a/packages/akamai/data_stream/siem/elasticsearch/ingest_pipeline/default.yml +++ b/packages/akamai/data_stream/siem/elasticsearch/ingest_pipeline/default.yml @@ -442,11 +442,6 @@ processors: - json - _tmp ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - script: lang: painless description: This script processor iterates over the whole document to remove fields with null values. diff --git a/packages/akamai/manifest.yml b/packages/akamai/manifest.yml index 370e396285f..2b6931d053a 100644 --- a/packages/akamai/manifest.yml +++ b/packages/akamai/manifest.yml @@ -1,6 +1,6 @@ name: akamai title: Akamai -version: "2.24.0" +version: "2.25.0" description: Collect logs from Akamai with Elastic Agent. type: integration format_version: "3.0.2" diff --git a/packages/amazon_security_lake/changelog.yml b/packages/amazon_security_lake/changelog.yml index dc0c175a2dd..3bfb65e258c 100644 --- a/packages/amazon_security_lake/changelog.yml +++ b/packages/amazon_security_lake/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.4.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.3.0" changes: - description: Removed import_mappings. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/amazon_security_lake/data_stream/event/elasticsearch/ingest_pipeline/default.yml b/packages/amazon_security_lake/data_stream/event/elasticsearch/ingest_pipeline/default.yml index 2f771d5336c..49d6fa96971 100644 --- a/packages/amazon_security_lake/data_stream/event/elasticsearch/ingest_pipeline/default.yml +++ b/packages/amazon_security_lake/data_stream/event/elasticsearch/ingest_pipeline/default.yml @@ -1337,11 +1337,6 @@ processors: tag: remove_duplicate_custom_fields ignore_missing: true if: ctx.tags == null || !(ctx.tags.contains('preserve_duplicate_custom_fields')) - - remove: - field: event.original - tag: remove_event_original - ignore_missing: true - if: ctx.tags == null || !(ctx.tags.contains('preserve_original_event')) - script: lang: painless description: Drops null/empty values recursively. diff --git a/packages/amazon_security_lake/manifest.yml b/packages/amazon_security_lake/manifest.yml index e5c91e5a5e2..b9cf4f0c5f5 100644 --- a/packages/amazon_security_lake/manifest.yml +++ b/packages/amazon_security_lake/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: amazon_security_lake title: Amazon Security Lake -version: "1.3.0" +version: "1.4.0" description: Collect logs from Amazon Security Lake with Elastic Agent. type: integration categories: ["aws", "security"] diff --git a/packages/apache/changelog.yml b/packages/apache/changelog.yml index 4393f9c7ca9..58422b2aafa 100644 --- a/packages/apache/changelog.yml +++ b/packages/apache/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.24.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.23.0" changes: - description: Update grok pattern to support access and error log format. diff --git a/packages/apache/data_stream/access/elasticsearch/ingest_pipeline/default.yml b/packages/apache/data_stream/access/elasticsearch/ingest_pipeline/default.yml index 1900ba5bd62..8323fb23321 100644 --- a/packages/apache/data_stream/access/elasticsearch/ingest_pipeline/default.yml +++ b/packages/apache/data_stream/access/elasticsearch/ingest_pipeline/default.yml @@ -231,11 +231,6 @@ processors: - append: field: error.message value: 'Processor {{{_ingest.on_failure_processor_type}}} with tag fail-{{{_ingest.on_failure_processor_tag}}} in pipeline {{{_ingest.pipeline}}} failed with message: {{{_ingest.on_failure_message}}}' - - remove: - field: event.original - if: "ctx.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - script: lang: painless source: |- diff --git a/packages/apache/data_stream/error/elasticsearch/ingest_pipeline/default.yml b/packages/apache/data_stream/error/elasticsearch/ingest_pipeline/default.yml index 8f081125a02..b18c5442c9d 100644 --- a/packages/apache/data_stream/error/elasticsearch/ingest_pipeline/default.yml +++ b/packages/apache/data_stream/error/elasticsearch/ingest_pipeline/default.yml @@ -136,11 +136,6 @@ processors: } } handleMap(ctx); - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true on_failure: - set: field: error.message diff --git a/packages/apache/manifest.yml b/packages/apache/manifest.yml index a27e1f0fc7e..7251b4ee3d7 100644 --- a/packages/apache/manifest.yml +++ b/packages/apache/manifest.yml @@ -1,7 +1,7 @@ format_version: 3.1.4 name: apache title: Apache HTTP Server -version: "1.23.0" +version: "1.24.0" source: license: Elastic-2.0 description: Collect logs and metrics from Apache servers with Elastic Agent. diff --git a/packages/apache_tomcat/changelog.yml b/packages/apache_tomcat/changelog.yml index 0f200c71bcf..760a1784f0d 100644 --- a/packages/apache_tomcat/changelog.yml +++ b/packages/apache_tomcat/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.8.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.7.0" changes: - description: ECS version updated to 8.11.0. Removed import_mappings. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/apache_tomcat/data_stream/access/elasticsearch/ingest_pipeline/default.yml b/packages/apache_tomcat/data_stream/access/elasticsearch/ingest_pipeline/default.yml index 9e66fe95157..6ae1ae21f1c 100644 --- a/packages/apache_tomcat/data_stream/access/elasticsearch/ingest_pipeline/default.yml +++ b/packages/apache_tomcat/data_stream/access/elasticsearch/ingest_pipeline/default.yml @@ -174,11 +174,6 @@ processors: field: - _tmp ignore_missing: true - - remove: - field: - - event.original - ignore_missing: true - if: ctx.tags == null || !(ctx.tags.contains('preserve_original_event')) - script: lang: painless source: |- diff --git a/packages/apache_tomcat/data_stream/catalina/elasticsearch/ingest_pipeline/default.yml b/packages/apache_tomcat/data_stream/catalina/elasticsearch/ingest_pipeline/default.yml index b70e1b02477..96b287140b6 100644 --- a/packages/apache_tomcat/data_stream/catalina/elasticsearch/ingest_pipeline/default.yml +++ b/packages/apache_tomcat/data_stream/catalina/elasticsearch/ingest_pipeline/default.yml @@ -65,11 +65,6 @@ processors: field: - _tmp ignore_missing: true - - remove: - field: - - event.original - ignore_missing: true - if: ctx.tags == null || !(ctx.tags.contains('preserve_original_event')) - script: lang: painless source: |- diff --git a/packages/apache_tomcat/data_stream/localhost/elasticsearch/ingest_pipeline/default.yml b/packages/apache_tomcat/data_stream/localhost/elasticsearch/ingest_pipeline/default.yml index 75d185c420b..aa952211635 100644 --- a/packages/apache_tomcat/data_stream/localhost/elasticsearch/ingest_pipeline/default.yml +++ b/packages/apache_tomcat/data_stream/localhost/elasticsearch/ingest_pipeline/default.yml @@ -65,11 +65,6 @@ processors: field: - _tmp ignore_missing: true - - remove: - field: - - event.original - ignore_missing: true - if: ctx.tags == null || !(ctx.tags.contains('preserve_original_event')) - script: lang: painless source: |- diff --git a/packages/apache_tomcat/manifest.yml b/packages/apache_tomcat/manifest.yml index 212f2c37982..06864329d02 100644 --- a/packages/apache_tomcat/manifest.yml +++ b/packages/apache_tomcat/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: apache_tomcat title: Apache Tomcat -version: "1.7.0" +version: "1.8.0" description: Collect and parse logs and metrics from Apache Tomcat servers with Elastic Agent. categories: ["web", "observability"] type: integration diff --git a/packages/arista_ngfw/changelog.yml b/packages/arista_ngfw/changelog.yml index 9d005b7e430..ba9be4dd4b0 100755 --- a/packages/arista_ngfw/changelog.yml +++ b/packages/arista_ngfw/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.2.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.1.0" changes: - description: Update package spec to 3.0.3. diff --git a/packages/arista_ngfw/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/arista_ngfw/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 8eb198f248a..e9941bd163d 100755 --- a/packages/arista_ngfw/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/arista_ngfw/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -918,11 +918,6 @@ processors: description: Remove Arista root field if empty field: arista if: ctx.arista != null && ctx['arista'].empty - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - remove: field: - _temp diff --git a/packages/arista_ngfw/manifest.yml b/packages/arista_ngfw/manifest.yml index 025e5de3e5b..ba01af25e3f 100755 --- a/packages/arista_ngfw/manifest.yml +++ b/packages/arista_ngfw/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.3" name: arista_ngfw title: "Arista NG Firewall" -version: "1.1.0" +version: "1.2.0" source: license: "Elastic-2.0" description: "Collect logs and metrics from Arista NG Firewall." @@ -10,7 +10,7 @@ categories: - network conditions: kibana: - version: "^8.10.1" + version: "^8.11.0" elastic: subscription: "basic" icons: diff --git a/packages/atlassian_bitbucket/changelog.yml b/packages/atlassian_bitbucket/changelog.yml index 82b7365c2af..eabe67f9e0d 100644 --- a/packages/atlassian_bitbucket/changelog.yml +++ b/packages/atlassian_bitbucket/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "2.2.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "2.1.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/atlassian_bitbucket/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/atlassian_bitbucket/data_stream/audit/elasticsearch/ingest_pipeline/default.yml index 10c9eb46f51..5c4ec1565e2 100644 --- a/packages/atlassian_bitbucket/data_stream/audit/elasticsearch/ingest_pipeline/default.yml +++ b/packages/atlassian_bitbucket/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -414,11 +414,6 @@ processors: - json - _tmp ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - script: lang: painless description: This script processor iterates over the whole document to remove fields with null values. diff --git a/packages/atlassian_bitbucket/manifest.yml b/packages/atlassian_bitbucket/manifest.yml index 77dccc738aa..649c528c159 100644 --- a/packages/atlassian_bitbucket/manifest.yml +++ b/packages/atlassian_bitbucket/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: atlassian_bitbucket title: Atlassian Bitbucket -version: "2.1.0" +version: "2.2.0" description: Collect logs from Atlassian Bitbucket with Elastic Agent. type: integration categories: diff --git a/packages/atlassian_confluence/changelog.yml b/packages/atlassian_confluence/changelog.yml index f4cd9a92a9b..0d23ad66f8f 100644 --- a/packages/atlassian_confluence/changelog.yml +++ b/packages/atlassian_confluence/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.26.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.25.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/atlassian_confluence/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/atlassian_confluence/data_stream/audit/elasticsearch/ingest_pipeline/default.yml index 95a21f39506..4fa872bc2a1 100644 --- a/packages/atlassian_confluence/data_stream/audit/elasticsearch/ingest_pipeline/default.yml +++ b/packages/atlassian_confluence/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -400,11 +400,6 @@ processors: - _tmp - _config ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - script: lang: painless description: This script processor iterates over the whole document to remove fields with null values. diff --git a/packages/atlassian_confluence/manifest.yml b/packages/atlassian_confluence/manifest.yml index 1db4b34d02c..86f08ee5729 100644 --- a/packages/atlassian_confluence/manifest.yml +++ b/packages/atlassian_confluence/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: atlassian_confluence title: Atlassian Confluence -version: "1.25.0" +version: "1.26.0" description: Collect logs from Atlassian Confluence with Elastic Agent. type: integration categories: diff --git a/packages/atlassian_jira/changelog.yml b/packages/atlassian_jira/changelog.yml index e45e96a061b..d54dc309c88 100644 --- a/packages/atlassian_jira/changelog.yml +++ b/packages/atlassian_jira/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.27.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.26.0" changes: - description: Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template. diff --git a/packages/atlassian_jira/data_stream/audit/elasticsearch/ingest_pipeline/default.yml b/packages/atlassian_jira/data_stream/audit/elasticsearch/ingest_pipeline/default.yml index fc12a8a4154..cb08498e8f6 100644 --- a/packages/atlassian_jira/data_stream/audit/elasticsearch/ingest_pipeline/default.yml +++ b/packages/atlassian_jira/data_stream/audit/elasticsearch/ingest_pipeline/default.yml @@ -384,11 +384,6 @@ processors: - _tmp - _config ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - script: lang: painless description: This script processor iterates over the whole document to remove fields with null values. diff --git a/packages/atlassian_jira/manifest.yml b/packages/atlassian_jira/manifest.yml index 5c8f9322dca..340682f2684 100644 --- a/packages/atlassian_jira/manifest.yml +++ b/packages/atlassian_jira/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: atlassian_jira title: Atlassian Jira -version: "1.26.0" +version: "1.27.0" description: Collect logs from Atlassian Jira with Elastic Agent. type: integration categories: diff --git a/packages/auditd/changelog.yml b/packages/auditd/changelog.yml index 19ace0d1352..b2e23bcb4b9 100644 --- a/packages/auditd/changelog.yml +++ b/packages/auditd/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "3.20.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "3.19.2" changes: - description: Fix invalid event type. diff --git a/packages/auditd/data_stream/log/elasticsearch/ingest_pipeline/default.yml b/packages/auditd/data_stream/log/elasticsearch/ingest_pipeline/default.yml index 90b394e2b23..852ee14cd8f 100644 --- a/packages/auditd/data_stream/log/elasticsearch/ingest_pipeline/default.yml +++ b/packages/auditd/data_stream/log/elasticsearch/ingest_pipeline/default.yml @@ -2320,11 +2320,6 @@ processors: - auditd.log.res ignore_failure: true ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true on_failure: - set: field: event.kind diff --git a/packages/auditd/manifest.yml b/packages/auditd/manifest.yml index 13de6a2fc77..5673be5d1c2 100644 --- a/packages/auditd/manifest.yml +++ b/packages/auditd/manifest.yml @@ -1,6 +1,6 @@ name: auditd title: Auditd Logs -version: "3.19.2" +version: "3.20.0" description: Collect logs from Linux audit daemon with Elastic Agent. type: integration icons: @@ -14,7 +14,7 @@ categories: - auditd conditions: kibana: - version: ^8.7.1 + version: ^8.11.0 screenshots: - src: /img/kibana-audit-auditd.png title: Auditd Kibana Dashboard diff --git a/packages/auditd_manager/changelog.yml b/packages/auditd_manager/changelog.yml index 83b8eadda04..a62d0ade046 100644 --- a/packages/auditd_manager/changelog.yml +++ b/packages/auditd_manager/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.17.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.16.4" changes: - description: Fix `audit_rule_files` diff --git a/packages/auditd_manager/data_stream/auditd/elasticsearch/ingest_pipeline/default.yml b/packages/auditd_manager/data_stream/auditd/elasticsearch/ingest_pipeline/default.yml index c8b170b7614..7bde6447922 100644 --- a/packages/auditd_manager/data_stream/auditd/elasticsearch/ingest_pipeline/default.yml +++ b/packages/auditd_manager/data_stream/auditd/elasticsearch/ingest_pipeline/default.yml @@ -197,11 +197,6 @@ processors: field: process.exit_code type: long ignore_missing: true - - remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - remove: field: auditd.messages if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" diff --git a/packages/auditd_manager/manifest.yml b/packages/auditd_manager/manifest.yml index 9c5c1c42ec2..cbc55daeeb2 100644 --- a/packages/auditd_manager/manifest.yml +++ b/packages/auditd_manager/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.0" name: auditd_manager title: "Auditd Manager" -version: "1.16.4" +version: "1.17.0" description: "The Auditd Manager Integration receives audit events from the Linux Audit Framework that is a part of the Linux kernel." type: integration categories: @@ -9,7 +9,7 @@ categories: - auditd conditions: kibana: - version: "^8.7.1" + version: "^8.12.0" screenshots: - src: /img/overview.png title: Overview Dashboard diff --git a/packages/auth0/changelog.yml b/packages/auth0/changelog.yml index 89844fc18b3..dd8d9f5d873 100644 --- a/packages/auth0/changelog.yml +++ b/packages/auth0/changelog.yml @@ -1,4 +1,9 @@ # newer versions go on top +- version: "1.18.0" + changes: + - description: "Allow @custom pipeline access to event.original without setting preserve_original_event." + type: enhancement + link: https://github.com/elastic/integrations/pull/10417 - version: "1.17.0" changes: - description: Add pull v2/logs API input. diff --git a/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml b/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml index f83dccef57c..a9737e6e12f 100644 --- a/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml +++ b/packages/auth0/data_stream/logs/elasticsearch/ingest_pipeline/default.yml @@ -1075,11 +1075,6 @@ processors: - auth0.logs.data.user_agent - auth0.logs.data.log_id ignore_missing: true -- remove: - field: event.original - if: "ctx?.tags == null || !(ctx.tags.contains('preserve_original_event'))" - ignore_failure: true - ignore_missing: true - script: lang: painless description: This script processor iterates over the whole document to remove fields with null values. diff --git a/packages/auth0/manifest.yml b/packages/auth0/manifest.yml index 089282509c9..03b75ea8007 100644 --- a/packages/auth0/manifest.yml +++ b/packages/auth0/manifest.yml @@ -1,7 +1,7 @@ format_version: "3.0.2" name: auth0 title: "Auth0" -version: "1.17.0" +version: "1.18.0" description: Collect logs from Auth0 with Elastic Agent. type: integration categories: