elastic · marc-gr · Jul 23, 2024 · Jul 18, 2024
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.18.1"
+  changes:
+    - description: Convert error.code to string
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/10529
 - version: "1.18.0"
   changes:
     - description: Add missing options to winlog input

@@ -385,6 +385,11 @@ processors:
         - winlog.event_data.Value8
         - winlog.event_data.Value9
 
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
+
 on_failure:
   - set:
       field: event.kind

@@ -1,6 +1,6 @@
 name: hid_bravura_monitor
 title: Bravura Monitor
-version: "1.18.0"
+version: "1.18.1"
 categories: ["security", "iam"]
 description: Collect logs from Bravura Security Fabric with Elastic Agent.
 type: integration

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "0.1.1"
+  changes:
+    - description: Convert error.code to string
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/10529
 - version: "0.1.0"
   changes:
     - description: Initial release

@@ -378,6 +378,11 @@ processors:
       allow_duplicates: false
       tag: append_related_source_ip
 
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
+
 # Remove duplicated and empty fields
   - script:
       lang: painless

@@ -3,7 +3,7 @@ name: microsoft_dnsserver
 title: Microsoft DNS Server
 description: Collect logs from Microsoft DNS Server with Elastic Agent.
 type: integration
-version: 0.1.0
+version: 0.1.1
 conditions:
   kibana:
     version: ^8.13.0

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "2.9.1"
+  changes:
+    - description: Convert error.code to string
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/10529
 - version: "2.9.0"
   changes:
     - description: Add missing options to winlog input

@@ -1234,6 +1234,12 @@ processors:
     field: winlog.record_id
     type: string
     ignore_missing: true
+
+- convert:
+    field: error.code
+    type: string
+    ignore_missing: true
+
 ##
 # Clean up
 ##

@@ -26,6 +26,7 @@ streams:
         show_user: false
         description: >
           Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the events are shipped. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details.
+
     title: Microsoft SQL Server performance metrics
     description: Collect Microsoft SQL Server performance metrics
 elasticsearch:

@@ -34,6 +34,7 @@ streams:
         show_user: false
         description: >
           Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata. This executes in the agent before the events are shipped. See [Processors](https://www.elastic.co/guide/en/fleet/current/elastic-agent-processor-configuration.html) for details.
+
     title: Microsoft SQL Server transaction_log metrics
     description: Collect Microsoft SQL Server transaction_log metrics
 elasticsearch:

@@ -1,7 +1,7 @@
 format_version: "3.0.2"
 name: microsoft_sqlserver
 title: "Microsoft SQL Server"
-version: "2.9.0"
+version: "2.9.1"
 description: Collect events from Microsoft SQL Server with Elastic Agent
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.59.3"
+  changes:
+    - description: Convert error.code to string for winlog inputs
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/10529
 - version: "1.59.2"
   changes:
     - description: Reverting https://github.com/elastic/integrations/pull/10471.

@@ -7,6 +7,10 @@ processors:
   - set:
       field: ecs.version
       value: 8.11.0
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 on_failure:
   - set:
       field: "error.message"

@@ -72,6 +72,10 @@ processors:
             value: "fail-{{{ _ingest.on_failure_processor_tag }}}"
         - fail:
             message: "Processor {{ _ingest.on_failure_processor_type }} with tag {{ _ingest.on_failure_processor_tag }} in pipeline {{ _ingest.on_failure_pipeline }} failed with message: {{ _ingest.on_failure_message }}"
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 on_failure:
   - set:
       field: event.kind

@@ -7,6 +7,10 @@ processors:
   - set:
       field: ecs.version
       value: 8.11.0
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 on_failure:
   - set:
       field: "error.message"

@@ -1,7 +1,7 @@
 format_version: 3.0.2
 name: system
 title: System
-version: "1.59.2"
+version: "1.59.3"
 description: Collect system logs and metrics from your servers with Elastic Agent.
 type: integration
 categories:

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.46.1"
+  changes:
+    - description: Convert error.code to string
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/10529
 - version: "1.46.0"
   changes:
     - description: Add initial Windows Defender data stream.

@@ -165,6 +165,11 @@ processors:
       copy_from: winlog.user_data.FileHash
       ignore_empty_value: true
       if: ctx.winlog?.user_data?.FileHash != "-"
+
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
 on_failure:
   - set:

@@ -165,6 +165,11 @@ processors:
       copy_from: winlog.user_data.FileHash
       ignore_empty_value: true
       if: ctx.winlog?.user_data?.FileHash != "-"
+
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
 on_failure:
   - set:

@@ -164,6 +164,11 @@ processors:
       copy_from: winlog.user_data.FileHash
       ignore_empty_value: true
       if: ctx.winlog?.user_data?.FileHash != "-"
+
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
 on_failure:
   - set:

@@ -164,6 +164,11 @@ processors:
       copy_from: winlog.user_data.FileHash
       ignore_empty_value: true
       if: ctx.winlog?.user_data?.FileHash != "-"
+
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
 on_failure:
   - set:

@@ -45,7 +45,12 @@ processors:
       field: winlog.event_data._MemberAccountType
       ignore_missing: true
       ignore_failure: true
-      if: ctx.user?.roles != null && ctx.winlog?.event_data?._MemberAccountType != null && ctx.user.roles.contains(ctx.winlog.event_data._MemberAccountType)   
+      if: ctx.user?.roles != null && ctx.winlog?.event_data?._MemberAccountType != null && ctx.user.roles.contains(ctx.winlog.event_data._MemberAccountType)
+
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
 on_failure:
   - set:

@@ -451,6 +451,11 @@ processors:
       ignore_missing: true
       if: ctx?.winlog?.event_data?.ScriptName != ""
 
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
+
   ## Cleanup.
 
   - remove:

@@ -511,6 +511,11 @@ processors:
       ignore_missing: true
       if: ctx?.winlog?.event_data?.ScriptName != ""
 
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
+
   ## Cleanup.
 
   - remove:

@@ -1225,6 +1225,10 @@ processors:
       ignore_missing: true
       ignore_failure: true
       if: ctx?.winlog?.event_data?.IsExecutable != null && ctx?.winlog?.event_data?.IsExecutable != ""
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
 ## Related fields
 

@@ -45,6 +45,10 @@ processors:
       type: string
       ignore_failure: true
       ignore_missing: true
+  - convert:
+      field: error.code
+      type: string
+      ignore_missing: true
 
   ## User fields.
 

@@ -1,6 +1,6 @@
 name: windows
 title: Windows
-version: 1.46.0
+version: 1.46.1
 description: Collect logs and metrics from Windows OS and services with Elastic Agent.
 type: integration
 categories: