-
Notifications
You must be signed in to change notification settings - Fork 388
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
output normalization for AWS cloudtrail logs #3301
Conversation
Started splunk/contentctl#361 to track the code changes for this. Changing the CI to use that branch will clear the errors for extra fields. There is/will be conflict at some point with the PR from the Snapattack folks here: #3287 and the associated contentctl changes to accommodate that. I think this looks good so far but there's a lot of questions about how we're going to use these that might make us want to change this up a bit. |
…_content into output_normalization_aws
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Think this is fine for now- no mechanism for enforcement/validation yet (code is merged, but no release with it yet so this CI hasn't ran with it)
output normalization for AWS cloudtrail logs