All changes to the log analytics integration will be documented in this file.
- FluentD sidecar image version bumped to 4.13, to reflect changes in
jfrog_siemandjfrog_send_metricsFluentD plugins
- Add support for metrics and logs outbound payload compression, with
gzip_compressionFluentD param as part offluent-plugin-jfrog-sent-metricsandfluent-plugin-splunk-hecplugins - Add support for a configurable http request timeout, with
request_timeoutFluentD param as part offluent-plugin-jfrog-metricsandfluent-plugin-jfrog-sent-metricsplugins - Add support for a configurable
verify_sslFluentD param as part offluent-plugin-jfrog-metrics - FluentD sidecar version bumped to 4.9, to incorporate the above changes
- Fix metrics configuration due to deprication of
artifactory.openMetricsas part of Artifactory 7.87.x charts and renaming it toartifactory.metrics
- FluentD sidecar version bumped to 4.5, to upgrade base image to bitnami/fluentd 1.17.0
- Fixing metrics documentation and general readme fixes
- Remove elastic search fluentd plugins from docker images
- [BREAKING] Adding deprecation notice for partnership-pts-observability.jfrog.io docker registry
- FluentD sidecar version bumped to 4.3, to upgrade base image to bitnami/fluentd 1.16.5
- Update FluentD sidecar helm charts to match recent changes in JFrog's official charts
- Fix order of request and response content length to match spec
- Fix Artifactory access's regex to match log input changes
- Updated docker images to use fluetnd:1.16.3 to resolve existing CVEs. Please see security section for more info
- Added CI to generate fluentd side car docker image from source
- Supporting only OS/VM, Docker and k8s installation types
- Adding .env files instead of setting/filling variables in fluentd config
- Adding jfrog and heap callhome in fluentd config
- Supporting only Artifactory and Xray Fluentd config
- Added call home implementation to the artifactory fluent configuration
- Using unified fluentd configuration for Xray Logs and Violations dashboards
- Using APIKey to authenticate Xray Violations (SIEM fluentd input plugin)
- Sending Xray logs and violation data to the same index
- Using log_source to filter in Xray Violations dashboard queries
- Fixing violation data correlation with user, ip information
- Fixing bugs in Dockerhub widgets, Xray Violations Dashboard
- Renaming widgets, fixing search queries in Xray Violations Dashboard
- Adding Violations widgets to Xray dashboard
- Normalizing access, request logs
- Added eventtypes, tags, fields, macros to the app
- New Widgets to Xray tab to show vulnerability information
- Helm support for Splunk to deploy Artifactory or Xray via helm with logs sent to Splunk
- Log Volume charts to show only artifactory and xray logs respectively
- Adding macro to avoid index dependency
- README updates for new Dockerhub / Docker widgets in Splunkbase app
- Added CHANGELOG-splunkbase.md to mirror release notes in Splunkbase
- Fixing issue with ip_address in access logs having space and . at the end
- [BREAKING] Splunk fluentd configs updated to use JF_PRODUCT_DATA_INTERNAL env.
- Splunk repo now submodule of parent log-analytics.
- Adding JFrog Pipelines fluent configuration files to capture logs
- Adding JFrog Mission Control fluent configuration files to capture logs
- Adding JFrog Distribution fluent configuration files to capture logs
- Splunk updates to launch new version of Splunkbase app v1.1.0
- Removing the need for user to specify splunk host , user, and token twice
- Fixing issue with regex on the audit security log
- Fixed issue with the repo and image when not docker api url
- Initial release of Jfrog Logs Analytic integration