Skip to content

[hi]*: ensure event.kind is correctly set for pipeline errors#6616

Merged
efd6 merged 2 commits intoelastic:mainfrom
efd6:6582-hi
Jun 21, 2023
Merged

[hi]*: ensure event.kind is correctly set for pipeline errors#6616
efd6 merged 2 commits intoelastic:mainfrom
efd6:6582-hi

Conversation

@efd6
Copy link
Copy Markdown
Contributor

@efd6 efd6 commented Jun 20, 2023
edited
Loading

What does this PR do?

Modify hashicorp_vault, hid_bravura_monitor, imperva, infoblox_bloxone_ddi and infoblox_nios to correctly set event.kind for pipeline errors and ensure error.message is an array.

iptables was included but upstream failures block testing so it is omitted.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.

Author's Checklist

  • [ ]

How to test this PR locally

Related issues

Screenshots

@efd6 efd6 self-assigned this Jun 20, 2023
@efd6
[hi]*: ensure event.kind is correctly set for pipeline errors
b2c3994 
hashicorp_vault, hid_bravura_monitor, imperva, infoblox_bloxone_ddi,
infoblox_nios and iptables
@efd6 efd6 mentioned this pull request Jun 20, 2023
Closed
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 20, 2023
edited
Loading

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS
Pipeline View Test View Changes Artifacts preview preview

Expand to view the summary

Build stats

  • Start Time: 2023-06-20T03:04:10.939+0000

  • Duration: 20 min 1 sec

Test stats 🧪

Test Results
Failed 0
Passed 126
Skipped 0
Total 126

🤖 GitHub comments

Expand to view the GitHub comments

To re-run your PR in the CI, just comment with:

  • /test : Re-trigger the build.

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 20, 2023
edited
Loading

🌐 Coverage report

Name Metrics % (covered/total) Diff
Packages 100.0% (9/9) 💚
Files 100.0% (13/13) 💚 2.97
Classes 100.0% (13/13) 💚 2.97
Methods 95.62% (131/137) 👍 3.469
Lines 96.664% (3912/4047) 👍 4.748
Conditionals 100.0% (0/0) 💚

@efd6
revert: iptables change
eef9c70 
reason for revert: the iptables package depends on journald which is failing with

```
{
    "log.level": "error",
    "@timestamp": "2023-06-20T02:59:49.371Z",
    "message": "Input 'journald' failed with: input.go:130: input journald-iptables.log-7d04ae60-0f16-11ee-976c-55635f4b2750 failed (id=journald-iptables.log-7d04ae60-0f16-11ee-976c-55635f4b2750)\n\tinput.go:174: failed to create reader for /run/service_logs/iptables.journal journal (path=/run/service_logs/iptables.journal): reader.go:119: failed to open journal file /run/service_logs/iptables.journal (path=/run/service_logs/iptables.journal): failed to open journals in paths [\"/run/service_logs/iptables.journal\"]: protocol not supported",
    "component": {
        "binary": "filebeat",
        "dataset": "elastic_agent.filebeat",
        "id": "journald-default",
        "type": "journald"
    },
    "log": {
        "source": "journald-default"
    },
    "id": "journald-iptables.log-7d04ae60-0f16-11ee-976c-55635f4b2750",
    "ecs.version": "1.6.0",
    "log.logger": "input.journald",
    "log.origin": {
        "file.line": 131,
        "file.name": "compat/compat.go"
    },
    "service.name": "filebeat"
}
```
@efd6 efd6 marked this pull request as ready for review June 20, 2023 03:24
@efd6 efd6 requested a review from a team as a code owner June 20, 2023 03:25
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 20, 2023

Pinging @elastic/security-external-integrations (Team:Security-External Integrations)

@efd6 efd6 merged commit 92684ed into elastic:main Jun 21, 2023
@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 21, 2023

Package iptables - 1.9.0 containing this change is available at https://epr.elastic.co/search?package=iptables

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 21, 2023

Package hashicorp_vault - 1.12.0 containing this change is available at https://epr.elastic.co/search?package=hashicorp_vault

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 21, 2023

Package hid_bravura_monitor - 1.8.0 containing this change is available at https://epr.elastic.co/search?package=hid_bravura_monitor

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 21, 2023

Package imperva - 0.16.0 containing this change is available at https://epr.elastic.co/search?package=imperva

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 21, 2023

Package infoblox_bloxone_ddi - 1.5.0 containing this change is available at https://epr.elastic.co/search?package=infoblox_bloxone_ddi

@elasticmachine
Copy link
Copy Markdown

elasticmachine commented Jun 21, 2023

Package infoblox_nios - 1.9.0 containing this change is available at https://epr.elastic.co/search?package=infoblox_nios

@efd6 efd6 deleted the 6582-hi branch February 5, 2025 22:08
@github-actions github-actions bot mentioned this pull request Feb 25, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kgeller kgeller kgeller approved these changes

Assignees

@efd6 efd6

Labels

enhancement New feature or request Integration:hashicorp_vault Hashicorp Vault Integration:hid_bravura_monitor Bravura Monitor (Partner supported) Integration:imperva Imperva Integration:infoblox_bloxone_ddi Infoblox BloxOne DDI Integration:infoblox_nios Infoblox NIOS

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@efd6 @elasticmachine @kgeller @andrewkroh