Skip to content

Cherry-pick #20138 to 7.8: [Filebeat] Update crowdstrike module#20178

Merged
andrewstucki merged 3 commits intoelastic:7.8from
andrewstucki:backport_20138_7.8
Jul 27, 2020
Merged

Cherry-pick #20138 to 7.8: [Filebeat] Update crowdstrike module#20178
andrewstucki merged 3 commits intoelastic:7.8from
andrewstucki:backport_20138_7.8

Conversation

@andrewstucki
Copy link
Copy Markdown

@andrewstucki andrewstucki commented Jul 23, 2020
edited by zube bot
Loading

Cherry-pick of PR #20138 to 7.8 branch. Original message:

What does this PR do?

I've been in the crowdstrike module recently anyway and noticed that there was an open issue reporting some parsing errors. I went ahead and just added some fixes for them.

One thing to note--due to normalizing all timestamps to UNIX_MS this is technically a breaking change. Do we want to be more conservative about the normalization?

Checklist

  • My code follows the style guidelines of this project
  • [ ] I have commented my code, particularly in hard-to-understand areas
  • [ ] I have made corresponding changes to the documentation
  • [ ] I have made corresponding change to the default configuration files
  • I have added tests that prove my fix is effective or that my feature works
  • I have added an entry in CHANGELOG.next.asciidoc or CHANGELOG-developer.next.asciidoc.

Related issues

[Filebeat] Update crowdstrike module (elastic#20138)
c12f57f 
* Update crowdstrike module

(cherry picked from commit 5e9a3a5)
@elasticmachine
Copy link
Copy Markdown
Contributor

elasticmachine commented Jul 23, 2020

Pinging @elastic/siem (Team:SIEM)

@botelastic botelastic bot added needs_team Indicates that the issue/PR needs a Team:* label and removed needs_team Indicates that the issue/PR needs a Team:* label labels Jul 23, 2020
@elasticmachine
Copy link
Copy Markdown
Contributor

elasticmachine commented Jul 23, 2020
edited by jenkins-beats-ci bot
Loading

💚 Build Succeeded

Pipeline View Test View Changes Artifacts preview

Expand to view the summary

Build stats

  • Build Cause: [Pull request #20178 updated]

  • Start Time: 2020-07-23T03:36:42.059+0000

  • Duration: 54 min 22 sec

Test stats 🧪

Test Results
Failed 0
Passed 3790
Skipped 683
Total 4473

@andrewstucki andrewstucki merged commit d87327a into elastic:7.8 Jul 27, 2020
@andrewstucki andrewstucki deleted the backport_20138_7.8 branch July 27, 2020 14:27
@zube zube bot removed the [zube]: Done label Oct 26, 2020
leweafan pushed a commit to leweafan/beats that referenced this pull request Apr 28, 2023
Cherry-pick elastic#20138 to 7.8: [Filebeat] Update crowdstrike module (
a871b3d 
elastic#20178)

* [Filebeat] Update crowdstrike module (elastic#20138)

* Update crowdstrike module

(cherry picked from commit aa58f2e)

* Fix up changelog

* Fix merge rendering issues
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@andrewkroh andrewkroh andrewkroh approved these changes

@marc-gr marc-gr marc-gr approved these changes

Assignees

No one assigned

Labels

backport

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@andrewstucki @elasticmachine @andrewkroh @marc-gr