[production] Promote many packages from snapshot

packages/akamai/1.0.0/changelog.yml

@@ -0,0 +1,31 @@
+# newer versions go on top
+- version: "1.0.0"
+  changes:
+    - description: Make GA
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/3428
+- version: "0.2.0"
+  changes:
+    - description: Update to ECS 8.2
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/2778
+- version: "0.1.3"
+  changes:
+    - description: Fix typo in config template for ignoring host enrichment
+      type: bugfix
+      link: https://github.com/elastic/integrations/pull/3092
+- version: "0.1.2"
+  changes:
+    - description: Add documentation for multi-fields
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/2916
+- version: "0.1.1"
+  changes:
+    - description: Update to ECS 8.0
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/2369
+- version: "0.1.0"
+  changes:
+    - description: initial release
+      type: enhancement # can be one of: enhancement, bugfix, breaking-change
+      link: https://github.com/elastic/integrations/pull/1643

packages/akamai/1.0.0/data_stream/siem/agent/stream/httpjson.yml.hbs

@@ -0,0 +1,80 @@
+config_version: "2"
+interval: {{interval}}
+request.method: "GET"
+request.url: "{{api_host}}/siem/v1/configs/{{config_ids}}"
+{{#if ssl}}
+request.ssl: {{ssl}}
+{{/if}}
+{{#if http_client_timeout}}
+request.timeout: {{http_client_timeout}}
+{{/if}}
+{{#if proxy_url }}
+request.proxy_url: {{proxy_url}}
+{{/if}}
+request.transforms:
+  - set:
+      target: url.params.from
+      value: "[[.cursor.last_execution_datetime]]"
+      default: '[[ (now (parseDuration "-{{initial_interval}}")).Unix ]]'
+  - set:
+      target: url.params.to
+      value: '[[ (now (parseDuration "-1m")).Unix ]]'
+  - set:
+      target: header.XTimestamp
+      value: '[[ formatDate (now) "20060102T15:04:05-0700" ]]'
+  - set:
+      target: header.XSignatureBase
+      value: '[[ sprintf "EG1-HMAC-SHA256 client_token=%s;access_token=%s;timestamp=%s;nonce=%s;" "{{client_token}}" "{{access_token}}" (.header.Get "XTimestamp") uuid ]]'
+  - set:
+      target: header.XSignatureKey
+      value: '[[ hmacBase64 "sha256" "{{client_secret}}" (.header.Get "XTimestamp") ]]'
+  - set:
+      target: header.XSignature
+      value: '[[ hmacBase64 "sha256" (.header.Get "XSignatureKey") "GET\t" .url.Scheme "\t" .url.Host "\t" .url.Path "?" .url.RawQuery "\t\t\t" (.header.Get "XSignatureBase") ]]'
+  - set:
+      target: header.Authorization
+      value: '[[ sprintf "%ssignature=%s" (.header.Get "XSignatureBase") (.header.Get "XSignature") ]]'
+  - delete:
+      target: header.XSignature
+  - delete:
+      target: header.XSignatureKey
+  - delete:
+      target: header.XSignatureBase
+  - delete:
+      target: header.XTimestamp
+
+response.decode_as: application/x-ndjson
+
+response.pagination:
+  - set:
+      target: url.params.offset
+      value: '[[ .last_event.offset ]]'
+      fail_on_template_error: true
+  - delete:
+      target: url.params.from
+  - delete:
+      target: url.params.to
+
+cursor:
+  last_execution_datetime:
+    value: '[[ (now (parseDuration "-1m")).Unix ]]'
+
+{{#if tags.length}}
+tags:
+{{else if preserve_original_event}}
+tags:
+{{/if}}
+{{#each tags as |tag i|}}
+  - {{tag}}
+{{/each}}
+{{#if preserve_original_event}}
+  - preserve_original_event
+{{/if}}
+{{#contains "forwarded" tags}}
+publisher_pipeline.disable_host: true
+{{/contains}}
+
+{{#if processors}}
+processors:
+{{processors}}
+{{/if}}