Skip to content

ECS 8.5.0
Compare
Choose a tag to compare
@taylor-swanson taylor-swanson released this 01 Nov 14:26
· 8 commits to 8.5 since this release
v8.5.0
c64d2c1
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.

What's new in ECS 8.5.0

Schema Changes

Added

  • Adding risk.* fields as experimental. #1994, #2010
  • Adding process.io.* as beta fields. #1956, #2031
  • Adding process.tty.rows and process.tty.columns as beta fields. #2031
  • Changed process.env_vars field type to be an array of keywords. #2038
  • process.attested_user and process.attested_groups as beta fields. #2050
  • Added risk.* fieldset to beta. #2051, #2058
  • Moved Linux event model fields to GA. #2082

Improvements

  • Advances threat.enrichments.indicator to GA. #1928
  • Added ios and android as valid values for os.type #1999

Tooling and Artifact Changes

Bugfixes

  • Added Deprecation Warning for misspell task #1993
  • Fix typo in client schema #2014
Assets 2
Loading