Skip to content

Commit

Permalink
[Filebeat] Fix PANW field spelling "veredict" to "verdict" (#18808) (#…
Browse files Browse the repository at this point in the history 
…20532)

Fix PANW field spelling "veredict" to "verdict" on event.action.

Co-authored-by: Andrea Dainese <andrea.dainese@gmail.com>
(cherry picked from commit 4d8354d)

Co-authored-by: dainok <andrea.dainese@pm.me>
  • Loading branch information
@andrewkroh @dainok
andrewkroh and dainok committed Aug 11, 2020
1 parent ba9c7a1 commit c1e344c
Show file tree
Hide file tree
Showing 2 changed files with 2 additions and 1 deletion.
1 change: 1 addition & 0 deletions CHANGELOG.next.asciidoc
View file
Original file line number Diff line number Diff line change
Expand Up @@ -76,6 +76,7 @@ field. You can revert this change by configuring tags for the module and omittin
- Adds Gsuite Groups support. {pull}19725[19725]
- Move file metrics to dataset endpoint {pull}19977[19977]
- Disable the option of running --machine-learning on its own. {pull}20241[20241]
- Fix PANW field spelling "veredict" to "verdict" on event.action {pull}18808[18808]
- Tracking session end reason in panw module. {pull}18705[18705]

*Heartbeat*
Expand Down
2 changes: 1 addition & 1 deletion x-pack/filebeat/module/panw/panos/ingest/pipeline.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -291,7 +291,7 @@ processors:
if: 'ctx?._temp_?.message_subtype == "vulnerability"'
- set:
field: event.action
value: wildfire_veredict
value: wildfire_verdict
if: 'ctx?._temp_?.message_subtype == "wildfire"'
- set:
field: event.action
Expand Down

0 comments on commit c1e344c

Please sign in to comment.