Skip to content

[windows] Make several windows pipeline and documentation improvements#14435

Merged
marc-gr merged 1 commit intoelastic:mainfrom
marc-gr:windows-fixes
Jul 8, 2025
Merged

[windows] Make several windows pipeline and documentation improvements#14435
marc-gr merged 1 commit intoelastic:mainfrom
marc-gr:windows-fixes

Conversation

@marc-gr
Copy link
Copy Markdown
Contributor

@marc-gr marc-gr commented Jul 7, 2025

Proposed commit message

Several pipeline improvements, including:
- Promote winlog.process.pid to process.pid in PowerShell and AppLocker data streams.
- Improve grok pattern for Windows Defender paths.
- Update field descriptions for winlog.process.pid to clarify its meaning.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

Closes elastic/beats#44908
Closes elastic/beats#44800
Closes elastic/beats#44799

@marc-gr marc-gr marked this pull request as ready for review July 7, 2025 10:05
@marc-gr marc-gr requested review from a team as code owners July 7, 2025 10:05
@marc-gr marc-gr requested review from AndersonQ and VihasMakwana July 7, 2025 10:05
@marc-gr marc-gr added enhancement New feature or request Integration:windows Windows Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform] labels Jul 7, 2025
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jul 7, 2025

Pinging @elastic/sec-windows-platform (Team:Security-Windows Platform)

@marc-gr marc-gr changed the title Make several windows package fixes [windows] Make several windows pipeline and documentation improvements Jul 7, 2025
@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Jul 7, 2025

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport

@elastic-sonarqube
Copy link
Copy Markdown

elastic-sonarqube bot commented Jul 7, 2025

Quality Gate failed Quality Gate failed

Failed conditions
57.8% Coverage on New Code (required ≥ 80%)

See analysis details on SonarQube

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jul 7, 2025

💚 Build Succeeded

@andrewkroh andrewkroh added the documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. label Jul 7, 2025
@marc-gr marc-gr merged commit 9e95dfe into elastic:main Jul 8, 2025
8 of 9 checks passed
@marc-gr marc-gr deleted the windows-fixes branch July 8, 2025 09:39
@elastic-vault-github-plugin-prod
Copy link
Copy Markdown

elastic-vault-github-plugin-prod bot commented Jul 8, 2025

Package windows - 3.1.0 containing this change is available at https://epr.elastic.co/package/windows/3.1.0/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@leehinman leehinman leehinman approved these changes

@ricardo-estc ricardo-estc ricardo-estc approved these changes

@AndersonQ AndersonQ Awaiting requested review from AndersonQ AndersonQ is a code owner automatically assigned from elastic/elastic-agent-data-plane

@VihasMakwana VihasMakwana Awaiting requested review from VihasMakwana VihasMakwana is a code owner automatically assigned from elastic/elastic-agent-data-plane

Assignees

No one assigned

Labels

documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. enhancement New feature or request Integration:windows Windows Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform]

Projects

None yet

Milestone

No milestone

5 participants

@marc-gr @elasticmachine @leehinman @ricardo-estc @andrewkroh