Skip to content

2.30.0
Compare
Choose a tag to compare
@wagga40 wagga40 released this 13 Oct 10:28
· 2 commits to master since this release
2.30.0
874dd08
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

v2.30.0

What's Changed

  • Add field transforms : Transforms in Zircolite are custom functions that manipulate the value of a specific field during the event flattening process. For example, you can decode base64 encoded values, extract credentials from logs etc. A quick demo is avaialable below.
  • Zircolite is now up to 10% faster
  • Dockerfile has been updated to automatically update rulesets
  • Docs have been updated

Warning

  • Event forwarding to ELK, Splunk, etc. is deprecated
  • Supported Python version is now 3.10

Field transforms demo

Zircolite-Field-transforms.mp4

New Contributors

Full Changelog: 2.20.0...2.30.0

Contributors

nasbench
Assets 2
Loading