Bot releases are hidden (Show)
Published by webmat almost 6 years ago
This is the first 1.0.0 pre-release of ECS. From 1.0.0-beta1 to 1.0.0 GA, no further breaking changes are expected. New fields might still be added.
url.href
multi_field
. #18geoip.*
to geo
. #58event.raw
to event.original
. #107user_agent.raw
to user_agent.original
and make it a keyword. #107file.path.raw
to file.path.keyword
, file.target_path.raw
to file.target_path.keyword
,url.href.raw
to url.href.keyword
, url.path.raw
to url.path.keyword
,url.query.raw
to url.query.keyword
, and network.name.raw
to network.name.keyword
. #103log.offset
and log.line
as too specific for ECS. #131kubernetes
and tls
. #132*.timezone.offset.sec
fields as too specific for ECS at the moment. #134url.host.name
to url.hostname
to better align with industry convention. #147text
indexing at this time are message
and error.message
.host.name
to host.hostname
to better align with industry convention. #144service.type
and service.name
.agent.name
field to be user defined field.url.href
to url.original
.source.subdomain
and destination.subdomain
fields.event.version
to ecs.version
. #169http
field set temporarily. #171user_agent
field set temporarily. #172url.hostname
to url.domain
. #175source.hostname
and destination.hostname
. #175network.total.packets
and network.total.bytes
field. PR#2event.action
field. #21network.name
, to track network names in the monitoring pipeline. #25http.response.status_code
and http.response.body
fields. #4log.message
. #3host.os.kernel
containing the OS kernel version. #60agent.type
field.http.request.referrer
field. #164network.type
, network.iana_number
, network.transport
andnetwork.application
. #81 and #170os
field set from host.os
anduser_agent.os
. #168Published by ruflin over 6 years ago