[production] Promote many packages from snapshot

[andrewkroh]

This PR promotes packages from snapshot to production.

Promoted packages:

• auditd-3.1.0: d6ad6f460e8ce205
• auditd_manager-1.0.0: 62f676ff70aa538d
• checkpoint-1.5.0: ad2742c2106f67d8
• cisco_asa-2.4.1: 2b098abab47ca6ae
• cisco_duo-1.2.2: 8e601c2e5baca7b2
• cisco_ftd-2.2.1: fb33bbbde10b34d7
• cisco_ios-1.6.0: 111e0507de572f9a
• cisco_umbrella-0.7.0: 391cae834540dc64
• crowdstrike-1.3.2: 7f9c3f89772eec28
• cylance-0.8.1: 434c89a8f30697b4
• fim-1.0.0: befbc54d2b68c274
• fireeye-1.3.1: 77263973de880920
• fortinet-1.6.1: 7948b884adc3fefe
• gcp-1.9.0: b37e7f144757e2c1
• httpjson-1.2.2: 918225884727beb2
• iptables-0.10.1: 955c6562b5550b16
• juniper_srx-1.3.0: 28ac906bd0ee249d
• microsoft_dhcp-1.4.1: 38eced2f7a4792f9
• mimecast-0.0.12: 5b99a1d0b98319eb
• netflow-2.0.1: 297f816ccc855b63
• okta-1.7.0: cd818b62930dd082
• oracle-1.0.2: ada5f57b809b8ce1
• panw-2.2.2: 86e31c78f834d445
• pfsense-1.0.1: 2d87d7059990da3d
• santa-3.1.0: d8aa81e751957be7
• snort-0.3.1: 1c87b105188d313f
• sonicwall-0.8.1: 5524be6601e4f767
• sophos-2.2.1: d4140b32c4ac6894
• symantec_endpoint-0.0.4: e0b99d7912768081
• ti_abusech-1.3.1: bcf78fbcb8247a88
• ti_cybersixgill-1.4.1: ae803eec21612be8
• ti_misp-1.3.1: 6aa9734646ea98cd
• ti_otx-1.3.1: 49f3850b58efdcd4
• ti_recordedfuture-0.1.3: 952381970d9f53fc
• ti_threatq-1.3.1: 80f7a3dd68c2bb8b

Summary of Fleet Package Changes

Report generated from snapshot branch commit
753326f9a3ebd959a8daa1a53c53287d868d02c4
from 2022-05-22 09:57:53 +0000 UTC.

Comparisons were made to production branch commit
f648e063963335b9b58490a2c311989a6bc3a0e5
from 2022-05-18 09:06:31 +0000 UTC.

Filtering parameters:

• Team: elastic/security-external-integrations

• Include Deprecated: false

Auditd Logs - 3.1.0

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 3.0.0

• 3.1.0
  • enhancement: Change title to Auditd Logs (PR)

Auditd Manager - 1.0.0

Owner: elastic/security-external-integrations

Requires: ^8.2.0

New Package

• 1.0.0
  • enhancement: Initial release (PR)

Check Point - 1.5.0

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 1.4.0

• 1.5.0
  • enhancement: Add TLS and custom options support to TCP input. (PR)

Cisco ASA - 2.4.1

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 2.3.0

• 2.4.1

  • bugfix: Ensure invalid event.outcome does not get recorded in event (PR)

• 2.4.0

  • enhancement: Add TCP input with TLS support (PR)

Cisco Duo - 1.2.2

Owner: elastic/security-external-integrations

Requires: ^7.17.2 || ^8.0.0

Changes since 1.2.1

• 1.2.2
  • bugfix: Fix invalid value for event.outcome in auth data set (PR)

Cisco FTD - 2.2.1

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 2.1.1

• 2.2.1

  • bugfix: Remove invalid values from ECS fields (PR)

• 2.2.0

  • enhancement: Add TLS system test (PR)
  • enhancement: Add TCP input with TLS support (PR)

Cisco IOS - 1.6.0

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 1.5.0

• 1.6.0
  • enhancement: Add TCP input with TLS support (PR)

Cisco Umbrella - 0.7.0

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 0.6.1

• 0.7.0
  • enhancement: Add Audit Logs (PR)

CrowdStrike Logs - 1.3.2

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 1.3.1

• 1.3.2
  • bugfix: Format source.mac as per ECS. (PR)

CylanceProtect Logs - 0.8.1

Owner: elastic/security-external-integrations

Requires: ^7.14.1 || ^8.0.0

Changes since 0.8.0

• 0.8.1
  • bugfix: Format host.mac as per ECS. (PR)

File Integrity Monitoring - 1.0.0

Owner: elastic/security-external-integrations

Requires: ^8.2.0

Changes since 0.1.0

• 1.0.0
  • enhancement: Make GA and compatible with 8.2 (PR)

Fireeye - 1.3.1

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 1.3.0

• 1.3.1
  • bugfix: Move invalid field value in sample event file (PR)

Fortinet Logs - 1.6.1

Owner: elastic/security-external-integrations

Requires: ^7.14.1 || ^8.0.0

Changes since 1.5.0

• 1.6.1

  • bugfix: Format source.mac and destination.mac as per ECS for the Fortimanager data stream. (PR)

• 1.6.0

  • enhancement: Add TLS and custom options to TCP input. (PR)

Google Cloud Platform - 1.9.0

Owner: elastic/security-external-integrations

Requires: ^7.17.0 || ^8.0.0

Changes since 1.8.0

• 1.9.0
  • enhancement: Preserve request and response in flattened fields. (PR)

Custom HTTPJSON Input - 1.2.2

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 1.2.1

• 1.2.2
  • bugfix: Fixes rendering issue for custom oauth2 scopes (PR)

Iptables Logs - 0.10.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 0.10.0

• 0.10.1
  • bugfix: Update sample event based on current pipeline. (PR)

Juniper SRX - 1.3.0

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 1.2.0

• 1.3.0
  • enhancement: Add TLS and custom options support to TCP input (PR)

Microsoft DHCP - 1.4.1

Owner: elastic/security-external-integrations

Requires: ^7.14.0 || ^8.0.0

Changes since 1.4.0

• 1.4.1
  • bugfix: Format observer.mac as per ECS and add missing mappings for event.category, event.outcome, and event.type. (PR)

Mimecast - 0.0.12

Owner: elastic/security-external-integrations

Requires: ^7.17.0 || ^8.0.0

Changes since 0.0.11

• 0.0.12
  • enhancement: Add more use cases for parsing audit events. (PR)

NetFlow Records - 2.0.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 2.0.0

• 2.0.1
  • bugfix: Fix invalid value in sample event (PR)

Okta Logs - 1.7.0

Owner: elastic/security-external-integrations

Requires: ^7.14.0 || ^8.0.0

Changes since 1.6.0

• 1.7.0
  • enhancement: Add flattened okta.request.ip_chain.* fields (PR)

Oracle - 1.0.2

Owner: elastic/security-external-integrations

Requires: ^7.17.0 || ^8.0.0

Changes since 1.0.1

• 1.0.2
  • bugfix: Supporting the double digit date parsing in ingest pipeline for oracle logs (PR)

Palo Alto Networks Logs - 2.2.2

Owner: elastic/security-external-integrations

Requires: ^8.2.1

Changes since 2.1.0

• 2.2.2

  • bugfix: Fix mapping for zone breakout (PR)

• 2.2.1

  • bugfix: Fix search terms in saved searches (PR)
  • bugfix: Remove invalid value in sample event and publish in documentation (PR)
  • enhancement: Add threat term to threat data set event.category (PR)

• 2.2.0

  • enhancement: Replace syslog input with UDP/TCP input and syslog processor. (PR)

pfSense Logs - 1.0.1

Owner: elastic/security-external-integrations

Requires: ^7.15.0 || ^8.0.0

Changes since 1.0.0

• 1.0.1
  • bugfix: Format client.mac as per ECS. (PR)

Google Santa Logs - 3.1.0

Owner: elastic/security-external-integrations

Requires: ^7.17.0 || ^8.0.0

Changes since 2.1.0

• 3.1.0

  • enhancement: Add process.entity_id field. (PR)

• 3.0.0

  • enhancement: Update log format to support the GA releases of Santa. The pre-GA Santa log format (circa 2017) is no longer accepted. (PR)

Snort - 0.3.1

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 0.3.0

• 0.3.1
  • bugfix: Format source.mac and destination.mac as per ECS and add missing mappings for various event.* fields. (PR)

Sonicwall-FW Logs - 0.8.1

Owner: elastic/security-external-integrations

Requires: ^7.14.1 || ^8.0.0

Changes since 0.8.0

• 0.8.1
  • bugfix: Format source.mac and destination.mac as per ECS. (PR)

Sophos Logs - 2.2.1

Owner: elastic/security-external-integrations

Requires: ^7.17.0 || ^8.0.0

Changes since 2.1.0

• 2.2.1

  • bugfix: Format source.mac and destination.mac as per ECS for the UTM data stream. (PR)

• 2.2.0

  • enhancement: Improve inputs for Sophos XG pipeline. (PR)

Symantec Endpoint Protection - 0.0.4

Owner: elastic/security-external-integrations

Requires: ^7.16.0 || ^8.0.0

Changes since 0.0.3

• 0.0.4
  • bugfix: Make field values conform to ECS (PR)

AbuseCH - 1.3.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 1.3.0

• 1.3.1
  • enhancement: Update package descriptions (PR)

Cybersixgill - 1.4.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 1.4.0

• 1.4.1
  • enhancement: Update package descriptions (PR)

MISP - 1.3.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 1.3.0

• 1.3.1
  • enhancement: Update package descriptions (PR)

AlienVault OTX - 1.3.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 1.3.0

• 1.3.1
  • enhancement: Update package descriptions (PR)

Recorded Future - 0.1.3

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 0.1.2

• 0.1.3
  • enhancement: Update package descriptions (PR)

ThreatQuotient - 1.3.1

Owner: elastic/security-external-integrations

Requires: ^8.0.0

Changes since 1.3.0

• 1.3.1
  • enhancement: Update package descriptions (PR)

[elasticmachine]

💚 Build Succeeded

the below badges are clickable and redirect to their specific view in the CI or DOCS

Expand to view the summary

Build stats

• Start Time: 2022-05-23T12:41:21.379+0000

• Duration: 34 min 48 sec

Test stats 🧪

Test	Results
Failed	0
Passed	69
Skipped	0
Total	69