Skip to content

[ECS] Update SEI packages to ECS 8.7 #5765

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 142 commits into from
Apr 5, 2023
Merged

[ECS] Update SEI packages to ECS 8.7 #5765

merged 142 commits into from
Apr 5, 2023

Conversation

ShourieG
Copy link
Contributor

@ShourieG ShourieG commented Mar 31, 2023
edited
Loading

Type of change

  • Enhancement

What does this PR do?

Updates SEI packages to ECS 8.7

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

Relates #5763
Closes https://github.com/elastic/security-team/issues/5720

ShourieG added 30 commits March 31, 2023 18:57
@ShourieG
[1password] - update ECS to 8.7.0 from 8.6.0
86c3e39 
This updates the 1password integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/1password
@ShourieG
[akamai] - update ECS to 8.7.0 from 8.6.0
29c26b7 
This updates the akamai integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/akamai
@ShourieG
[atlassian_bitbucket] - update ECS to 8.7.0 from 8.6.0
ed275ad 
This updates the atlassian_bitbucket integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/atlassian_bitbucket
@ShourieG
[atlassian_confluence] - update ECS to 8.7.0 from 8.6.0
43e41e1 
This updates the atlassian_confluence integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/atlassian_confluence
@ShourieG
[atlassian_jira] - update ECS to 8.7.0 from 8.6.0
514233a 
This updates the atlassian_jira integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/atlassian_jira
@ShourieG
[auditd] - update ECS to 8.7.0 from 8.6.0
4f8c67c 
This updates the auditd integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/auditd
@ShourieG
[auditd_manager] - update ECS to 8.7.0 from 8.6.0
ca52269 
This updates the auditd_manager integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/auditd_manager
@ShourieG
[auth0] - update ECS to 8.7.0 from 8.6.0
e59b325 
This updates the auth0 integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/auth0
@ShourieG
[azure_blob_storage] - update ECS to 8.7.0
303b080 
This updates the azure_blob_storage integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and no pipelines set ecs.version.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/azure_blob_storage
@ShourieG
[azure_frontdoor] - update ECS to 8.7.0 from 8.6.0
d68430b 
This updates the azure_frontdoor integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/azure_frontdoor
@ShourieG
[barracuda] - update ECS to 8.7.0 from 8.6.0
5fd12ea 
This updates the barracuda integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/barracuda
@ShourieG
[barracuda_cloudgen_firewall] - update ECS to 8.7.0 from 8.6.0
bab65d2 
This updates the barracuda_cloudgen_firewall integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/barracuda_cloudgen_firewall
@ShourieG
[bluecoat] - update ECS to 8.7.0 from 8.6.0
94ee31f 
This updates the bluecoat integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/bluecoat
@ShourieG
[box_events] - update ECS to 8.7.0 from 8.6.0
bba42df 
This updates the box_events integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/box_events
@ShourieG
[carbon_black_cloud] - update ECS to 8.7.0 from 8.6.0
7186789 
This updates the carbon_black_cloud integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/carbon_black_cloud
@ShourieG
[carbonblack_edr] - update ECS to 8.7.0 from 8.6.0
2fa5711 
This updates the carbonblack_edr integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/carbonblack_edr
@ShourieG
[cef] - update ECS to 8.7.0 from 8.6.0
ba1391a 
This updates the cef integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cef
@ShourieG
[checkpoint] - update ECS to 8.7.0 from 8.6.0
35b83f6 
This updates the checkpoint integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/checkpoint
@ShourieG
[cisco_aironet] - update ECS to 8.7.0 from 8.6.0
6b689f9 
This updates the cisco_aironet integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_aironet
@ShourieG
[cisco_asa] - update ECS to 8.7.0 from 8.6.0
ed016cf 
This updates the cisco_asa integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_asa
@ShourieG
[cisco_duo] - update ECS to 8.7.0 from 8.6.0
f99974b 
This updates the cisco_duo integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_duo
@ShourieG
[cisco_ftd] - update ECS to 8.7.0 from 8.6.0
020f243 
This updates the cisco_ftd integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_ftd
@ShourieG
[cisco_ios] - update ECS to 8.7.0 from 8.6.0
e0a933a 
This updates the cisco_ios integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_ios
@ShourieG
[cisco_ise] - update ECS to 8.7.0 from 8.6.0
9ac3d0d 
This updates the cisco_ise integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_ise
@ShourieG
[cisco_meraki] - update ECS to 8.7.0 from 8.6.0
a18c3cd 
This updates the cisco_meraki integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_meraki
@ShourieG
[cisco_nexus] - update ECS to 8.7.0 from 8.6.0
985b91c 
This updates the cisco_nexus integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_nexus
@ShourieG
[cisco_secure_email_gateway] - update ECS to 8.7.0 from 8.6.0
f3d9b49 
This updates the cisco_secure_email_gateway integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_secure_email_gateway
@ShourieG
[cisco_secure_endpoint] - update ECS to 8.7.0 from 8.6.0
9e35542 
This updates the cisco_secure_endpoint integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_secure_endpoint
@ShourieG
[cisco_umbrella] - update ECS to 8.7.0 from 8.6.0
8701369 
This updates the cisco_umbrella integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/cisco_umbrella
@ShourieG
[citrix_waf] - update ECS to 8.7.0 from 8.6.0
10313b1 
This updates the citrix_waf integration to ECS 8.7.0.
It was referencing elastic/ecs [email protected] and using 8.6.0 in ingest pipelines.

[git-generate]
go run github.com/andrewkroh/go-examples/ecs-update@latest -ecs-version=8.7.0packages/citrix_waf
@elasticmachine
Copy link

Package sophos - 2.8.0 containing this change is available at https://epr.elastic.co/search?package=sophos

@elasticmachine
Copy link

Package sophos_central - 1.1.0 containing this change is available at https://epr.elastic.co/search?package=sophos_central

@elasticmachine
Copy link

Package squid - 0.13.0 containing this change is available at https://epr.elastic.co/search?package=squid

@elasticmachine
Copy link

Package suricata - 2.7.0 containing this change is available at https://epr.elastic.co/search?package=suricata

@elasticmachine
Copy link

Package symantec_endpoint - 2.4.0 containing this change is available at https://epr.elastic.co/search?package=symantec_endpoint

@elasticmachine
Copy link

Package sysmon_linux - 0.2.0 containing this change is available at https://epr.elastic.co/search?package=sysmon_linux

@elasticmachine
Copy link

Package system_audit - 1.1.0 containing this change is available at https://epr.elastic.co/search?package=system_audit

@elasticmachine
Copy link

Package tanium - 0.2.0 containing this change is available at https://epr.elastic.co/search?package=tanium

@elasticmachine
Copy link

Package tcp - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=tcp

@elasticmachine
Copy link

Package tenable_io - 0.3.0 containing this change is available at https://epr.elastic.co/search?package=tenable_io

@elasticmachine
Copy link

Package tenable_sc - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=tenable_sc

@elasticmachine
Copy link

Package thycotic_ss - 0.1.0 containing this change is available at https://epr.elastic.co/search?package=thycotic_ss

@elasticmachine
Copy link

Package ti_abusech - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=ti_abusech

@elasticmachine
Copy link

Package ti_anomali - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=ti_anomali

@elasticmachine
Copy link

Package ti_cif3 - 0.5.0 containing this change is available at https://epr.elastic.co/search?package=ti_cif3

@elasticmachine
Copy link

Package ti_cybersixgill - 1.10.0 containing this change is available at https://epr.elastic.co/search?package=ti_cybersixgill

@elasticmachine
Copy link

Package ti_otx - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=ti_otx

@elasticmachine
Copy link

Package ti_rapid7_threat_command - 1.1.0 containing this change is available at https://epr.elastic.co/search?package=ti_rapid7_threat_command

@elasticmachine
Copy link

Package ti_recordedfuture - 1.6.0 containing this change is available at https://epr.elastic.co/search?package=ti_recordedfuture

@elasticmachine
Copy link

Package ti_threatq - 1.9.0 containing this change is available at https://epr.elastic.co/search?package=ti_threatq

@elasticmachine
Copy link

Package tines - 0.1.0 containing this change is available at https://epr.elastic.co/search?package=tines

@elasticmachine
Copy link

Package trend_micro_vision_one - 1.1.0 containing this change is available at https://epr.elastic.co/search?package=trend_micro_vision_one

@elasticmachine
Copy link

Package trendmicro - 0.2.0 containing this change is available at https://epr.elastic.co/search?package=trendmicro

@elasticmachine
Copy link

Package udp - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=udp

@elasticmachine
Copy link

Package winlog - 1.13.0 containing this change is available at https://epr.elastic.co/search?package=winlog

@elasticmachine
Copy link

Package zeek - 2.8.0 containing this change is available at https://epr.elastic.co/search?package=zeek

@elasticmachine
Copy link

Package zerofox - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=zerofox

@elasticmachine
Copy link

Package zoom - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=zoom

@elasticmachine
Copy link

Package zscaler_zia - 2.8.0 containing this change is available at https://epr.elastic.co/search?package=zscaler_zia

@elasticmachine
Copy link

Package zscaler_zpa - 1.6.0 containing this change is available at https://epr.elastic.co/search?package=zscaler_zpa

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zmoog zmoog zmoog approved these changes

@andrewkroh andrewkroh andrewkroh approved these changes

@efd6 efd6 efd6 approved these changes

@muthu-mps muthu-mps muthu-mps approved these changes

Assignees

@ShourieG ShourieG

Labels
8.7 candidate
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
6 participants
@ShourieG @elasticmachine @efd6 @zmoog @andrewkroh @muthu-mps