[ECS] Update SEI packages to ECS 8.8 (Part 4) by taylor-swanson · Pull Request #6328 · elastic/integrations

taylor-swanson · 2023-05-25T20:39:31Z

What does this PR do?

Note: This PR only updates the ECS version of the selected packages. If additional work is needed to align a package to a new feature provided by ECS, it will be handled in a separate PR.

Updates the following SEI packages to ECS 8.8:

squid
suricata
symantec_endpoint
sysmon_linux
system_audit
tanium
tcp
tenable_io
tenable_sc
thycotic_ss
ti_abusech
ti_anomali
ti_cif3
ti_cybersixgill
ti_misp
ti_otx
ti_rapid7_threat_command
ti_recordedfuture
ti_threatq
tines
trellix_epo_cloud
trend_micro_vision_one
trendmicro
udp
vectra_detect
winlog
zeek
zerofox
zeronetworks
zoom
zscaler_zia
zscaler_zpa

Changes generated by:

ecs-update -owner elastic/security-external-integrations -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr 6328 packages/<PACKAGE>

Checklist

I have reviewed tips for building integrations and this pull request is aligned with them.
I have verified that all data streams collect metrics or logs.
I have added an entry to my package's changelog.yml file.
I have verified that Kibana version constraints are current according to guidelines.

Related issues

Relates [meta] Upgrade integrations to ECS 8.8 #5816

This updates the squid integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/squid

This updates the suricata integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/suricata

This updates the symantec_endpoint integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/symantec_endpoint

This updates the sysmon_linux integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/sysmon_linux

This updates the system_audit integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/system_audit

This updates the tanium integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tanium

This updates the tcp integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tcp

This updates the tenable_io integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tenable_io

This updates the tenable_sc integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tenable_sc

This updates the thycotic_ss integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/thycotic_ss

This updates the ti_abusech integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_abusech

This updates the ti_anomali integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_anomali

This updates the ti_cif3 integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_cif3

This updates the ti_cybersixgill integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_cybersixgill

This updates the ti_misp integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0, 8.4.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_misp

This updates the ti_otx integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_otx

This updates the ti_rapid7_threat_command integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_rapid7_threat_command

This updates the ti_recordedfuture integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_recordedfuture

This updates the ti_threatq integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/ti_threatq

This updates the tines integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tines

This updates the trellix_epo_cloud integration to ECS 8.8.0. It was referencing elastic/ecs git@v8.7.0 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/trellix_epo_cloud

This updates the trend_micro_vision_one integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/trend_micro_vision_one

This updates the trendmicro integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/trendmicro

This updates the udp integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/udp

This updates the vectra_detect integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/vectra_detect

This updates the winlog integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/winlog

This updates the zeek integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/zeek

This updates the zerofox integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/zerofox

This updates the zeronetworks integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/zeronetworks

This updates the zoom integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and using 8.7.0 in ingest pipelines. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/zoom

elasticmachine · 2023-06-05T16:35:44Z

Package sysmon_linux - 0.4.0 containing this change is available at https://epr.elastic.co/search?package=sysmon_linux

elasticmachine · 2023-06-05T16:41:07Z

Package system_audit - 1.3.0 containing this change is available at https://epr.elastic.co/search?package=system_audit

elasticmachine · 2023-06-05T16:45:55Z

Package tanium - 0.4.0 containing this change is available at https://epr.elastic.co/search?package=tanium

elasticmachine · 2023-06-05T16:50:33Z

Package tcp - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=tcp

elasticmachine · 2023-06-05T16:54:59Z

Package tenable_io - 0.8.0 containing this change is available at https://epr.elastic.co/search?package=tenable_io

elasticmachine · 2023-06-05T16:59:20Z

Package tenable_sc - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=tenable_sc

elasticmachine · 2023-06-05T17:04:17Z

Package thycotic_ss - 0.3.0 containing this change is available at https://epr.elastic.co/search?package=thycotic_ss

elasticmachine · 2023-06-05T17:08:25Z

Package ti_abusech - 1.12.0 containing this change is available at https://epr.elastic.co/search?package=ti_abusech

elasticmachine · 2023-06-05T17:12:51Z

Package ti_anomali - 1.13.0 containing this change is available at https://epr.elastic.co/search?package=ti_anomali

elasticmachine · 2023-06-05T17:17:17Z

Package ti_cif3 - 0.7.0 containing this change is available at https://epr.elastic.co/search?package=ti_cif3

elasticmachine · 2023-06-05T17:21:53Z

Package ti_cybersixgill - 1.12.0 containing this change is available at https://epr.elastic.co/search?package=ti_cybersixgill

elasticmachine · 2023-06-05T17:26:12Z

Package ti_misp - 1.15.0 containing this change is available at https://epr.elastic.co/search?package=ti_misp

elasticmachine · 2023-06-05T17:35:13Z

Package ti_otx - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=ti_otx

elasticmachine · 2023-06-05T17:39:28Z

Package ti_rapid7_threat_command - 1.3.0 containing this change is available at https://epr.elastic.co/search?package=ti_rapid7_threat_command

elasticmachine · 2023-06-05T17:43:37Z

Package ti_recordedfuture - 1.11.0 containing this change is available at https://epr.elastic.co/search?package=ti_recordedfuture

elasticmachine · 2023-06-05T17:48:12Z

Package ti_threatq - 1.11.0 containing this change is available at https://epr.elastic.co/search?package=ti_threatq

elasticmachine · 2023-06-05T17:53:05Z

Package tines - 0.4.0 containing this change is available at https://epr.elastic.co/search?package=tines

elasticmachine · 2023-06-05T17:57:28Z

Package trellix_epo_cloud - 0.2.0 containing this change is available at https://epr.elastic.co/search?package=trellix_epo_cloud

elasticmachine · 2023-06-05T18:01:50Z

Package trend_micro_vision_one - 1.3.0 containing this change is available at https://epr.elastic.co/search?package=trend_micro_vision_one

elasticmachine · 2023-06-05T18:06:18Z

Package trendmicro - 0.4.0 containing this change is available at https://epr.elastic.co/search?package=trendmicro

elasticmachine · 2023-06-05T18:10:41Z

Package udp - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=udp

elasticmachine · 2023-06-05T18:15:09Z

Package vectra_detect - 0.4.0 containing this change is available at https://epr.elastic.co/search?package=vectra_detect

elasticmachine · 2023-06-05T18:19:44Z

Package winlog - 1.16.0 containing this change is available at https://epr.elastic.co/search?package=winlog

elasticmachine · 2023-06-05T18:24:03Z

Package zeek - 2.9.0 containing this change is available at https://epr.elastic.co/search?package=zeek

elasticmachine · 2023-06-05T18:28:25Z

Package zerofox - 1.11.0 containing this change is available at https://epr.elastic.co/search?package=zerofox

elasticmachine · 2023-06-05T18:36:55Z

Package zeronetworks - 0.3.0 containing this change is available at https://epr.elastic.co/search?package=zeronetworks

elasticmachine · 2023-06-05T18:41:21Z

Package zoom - 1.11.0 containing this change is available at https://epr.elastic.co/search?package=zoom

elasticmachine · 2023-06-05T18:45:55Z

Package zscaler_zia - 2.10.0 containing this change is available at https://epr.elastic.co/search?package=zscaler_zia

elasticmachine · 2023-06-05T18:50:37Z

Package zscaler_zpa - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=zscaler_zpa

Updates the following SEI packages to ECS 8.8: - squid - suricata - symantec_endpoint - sysmon_linux - system_audit - tanium - tcp - tenable_io - tenable_sc - thycotic_ss - ti_abusech - ti_anomali - ti_cif3 - ti_cybersixgill - ti_misp - ti_otx - ti_rapid7_threat_command - ti_recordedfuture - ti_threatq - tines - trellix_epo_cloud - trend_micro_vision_one - trendmicro - udp - vectra_detect - winlog - zeek - zerofox - zeronetworks - zoom - zscaler_zia - zscaler_zpa Changes generated by: ecs-update -owner elastic/security-external-integrations -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr 6328 packages/<PACKAGE>

taylor-swanson added 30 commits May 25, 2023 15:44

[tcp] - update ECS to 8.8.0

d386395

This updates the tcp integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tcp

[tines] - update ECS to 8.8.0

de6a9f3

This updates the tines integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/tines

[udp] - update ECS to 8.8.0

a331ce3

This updates the udp integration to ECS 8.8.0. It was referencing elastic/ecs git@8.7 and no pipelines set ecs.version. [git-generate] go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.8.0 -ecs-git-ref=8.8 -pr=6328 packages/udp

Conversation

taylor-swanson commented May 25, 2023 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

What does this PR do?

Checklist

Related issues

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

elasticmachine commented Jun 5, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

3 participants

taylor-swanson commented May 25, 2023 •

edited

Loading