Skip to content

{system,windows} Sync windows pipelines with beats #12889

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Mar 3, 2025
Merged

{system,windows} Sync windows pipelines with beats #12889

merged 3 commits into from
Mar 3, 2025

Conversation

marc-gr
Copy link
Contributor

@marc-gr marc-gr commented Feb 25, 2025
edited
Loading

Proposed commit message

  • Port changes from beats pipelines for windows integration and system/security data stream.
  • Add constraint for 9.0.0 for windows integration.
  • Update windows integration to ECS 8.17.0.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

@marc-gr marc-gr added enhancement New feature or request Integration:windows Windows Integration:system System Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform] labels Feb 25, 2025
@marc-gr marc-gr marked this pull request as ready for review February 25, 2025 13:40
@marc-gr marc-gr requested review from a team as code owners February 25, 2025 13:40
@elasticmachine
Copy link

Pinging @elastic/sec-windows-platform (Team:Security-Windows Platform)

@elastic-vault-github-plugin-prod
Copy link

elastic-vault-github-plugin-prod bot commented Feb 25, 2025
edited
Loading

🚀 Benchmarks report

Package windows 👍(3) 💚(2) 💔(4)

Expand to view
Data stream Previous EPS New EPS Diff (%) Result
applocker_exe_and_dll 8130.08 5847.95 -2282.13 (-28.07%) 💔
applocker_msi_and_script 8849.56 7518.8 -1330.76 (-15.04%) 💔
powershell_operational 4672.9 3787.88 -885.02 (-18.94%) 💔
windows_defender 15384.62 11235.96 -4148.66 (-26.97%) 💔

To see the full report comment with /test benchmark fullreport

@marc-gr
Copy link
Contributor Author

marc-gr commented Feb 26, 2025

/test stack 9.0.0-SNAPSHOT

@marc-gr
Copy link
Contributor Author

marc-gr commented Feb 26, 2025

/test

@elasticmachine
Copy link

⏳ Build in-progress, with failures

Failed CI Steps

History

@elasticmachine
Copy link

💚 Build Succeeded

History

@elastic-sonarqube Elastic SonarQube
Copy link

Quality Gate passed Quality Gate passed

Issues
0 New issues
0 Fixed issues
0 Accepted issues

Measures
0 Security Hotspots
84.8% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube

@marc-gr marc-gr merged commit a74f0bf into elastic:main Mar 3, 2025
6 checks passed
@marc-gr marc-gr deleted the windows-sync branch March 3, 2025 15:41
@elastic-vault-github-plugin-prod
Copy link

Package system - 1.67.0 containing this change is available at https://epr.elastic.co/package/system/1.67.0/

@elastic-vault-github-plugin-prod
Copy link

Package windows - 2.5.0 containing this change is available at https://epr.elastic.co/package/windows/2.5.0/

flexitrev pushed a commit that referenced this pull request Mar 20, 2025
@marc-gr @flexitrev
{system,windows} Sync windows pipelines with beats (#12889)
3d19c7e 
* Sync windows pipelines with beats

* skip ignore fields

* Add dynamic mapping to security
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@matthewscherer matthewscherer matthewscherer approved these changes

@khushijain21 khushijain21 Awaiting requested review from khushijain21 khushijain21 is a code owner automatically assigned from elastic/elastic-agent-data-plane

@VihasMakwana VihasMakwana Awaiting requested review from VihasMakwana VihasMakwana is a code owner automatically assigned from elastic/elastic-agent-data-plane

Assignees
No one assigned
Labels
enhancement New feature or request Integration:system System Integration:windows Windows Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform]
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@marc-gr @elasticmachine @matthewscherer