New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[feature request] Usage with Elastic Common Schema (ECS) #295

Open

ebuildy opened this issue Aug 27, 2024 · 1 comment

Labels

Help Wanted New Feature

ebuildy commented Aug 27, 2024

Elastic stack provides a specification https://www.elastic.co/guide/en/ecs/current/ecs-reference.html that defines a common set of fields to be used when storing event data in Elasticsearch.

The feature request is about create a formatter to support this schema, for example, the field file is an object https://www.elastic.co/guide/en/ecs/current/ecs-file.html that accepts sub fields path , name etc...

Supporting ECS make easier integration with file-beat and elastic stack .

The text was updated successfully, but these errors were encountered:

Owner

reidmorrison commented Sep 3, 2024

Great idea. Should be relatively straight forward to create a new formatter using this spec.

reidmorrison added New Feature Help Wanted labels

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment