Skip to content

Commit

Permalink
[Filebeat] Fix PANW field spelling "veredict" to "verdict" (elastic#1…
Browse files Browse the repository at this point in the history 
…8808)

Fix PANW field spelling "veredict" to "verdict" on event.action.

Co-authored-by: Andrea Dainese <[email protected]>
  • Loading branch information
@dainok @melchiormoulin
2 people authored and melchiormoulin committed Oct 14, 2020
1 parent 89cc547 commit f7ed9ca
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions CHANGELOG.next.asciidoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -63,6 +63,7 @@ https://github.com/elastic/beats/compare/v7.0.0-alpha2...master[Check the HEAD d
- Adds Gsuite Groups support. {pull}19725[19725]
- Move file metrics to dataset endpoint {pull}19977[19977]
- Add `while_pattern` type to multiline reader. {pull}19662[19662]
- Fix PANW field spelling "veredict" to "verdict" on event.action {pull}18808[18808]

*Heartbeat*

Expand Down
2 changes: 1 addition & 1 deletion x-pack/filebeat/module/panw/panos/ingest/pipeline.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -294,7 +294,7 @@ processors:
if: 'ctx?._temp_?.message_subtype == "vulnerability"'
- set:
field: event.action
value: wildfire_veredict
value: wildfire_verdict
if: 'ctx?._temp_?.message_subtype == "wildfire"'
- set:
field: event.action
Expand Down

0 comments on commit f7ed9ca

Please sign in to comment.