Skip to content

[windows] Make several windows pipeline and documentation improvements #14435

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 8, 2025
Merged

[windows] Make several windows pipeline and documentation improvements #14435

merged 1 commit into from
Jul 8, 2025

Conversation

marc-gr
Copy link
Contributor

@marc-gr marc-gr commented Jul 7, 2025

Proposed commit message

Several pipeline improvements, including:
- Promote winlog.process.pid to process.pid in PowerShell and AppLocker data streams.
- Improve grok pattern for Windows Defender paths.
- Update field descriptions for winlog.process.pid to clarify its meaning.

Checklist

  • I have reviewed tips for building integrations and this pull request is aligned with them.
  • I have verified that all data streams collect metrics or logs.
  • I have added an entry to my package's changelog.yml file.
  • I have verified that Kibana version constraints are current according to guidelines.
  • I have verified that any added dashboard complies with Kibana's Dashboard good practices

Closes elastic/beats#44908
Closes elastic/beats#44800
Closes elastic/beats#44799

@marc-gr marc-gr marked this pull request as ready for review July 7, 2025 10:05
@marc-gr marc-gr requested review from a team as code owners July 7, 2025 10:05
@marc-gr marc-gr requested review from AndersonQ and VihasMakwana July 7, 2025 10:05
@marc-gr marc-gr added enhancement New feature or request Integration:windows Windows Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform] labels Jul 7, 2025
@elasticmachine
Copy link

Pinging @elastic/sec-windows-platform (Team:Security-Windows Platform)

@marc-gr marc-gr changed the title Make several windows package fixes [windows] Make several windows pipeline and documentation improvements Jul 7, 2025
@elastic-vault-github-plugin-prod
Copy link

🚀 Benchmarks report

To see the full report comment with /test benchmark fullreport

@elastic-sonarqube Elastic SonarQube
Copy link

Quality Gate failed Quality Gate failed

Failed conditions
57.8% Coverage on New Code (required ≥ 80%)

See analysis details on SonarQube

@elasticmachine
Copy link

💚 Build Succeeded

@andrewkroh andrewkroh added the documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. label Jul 7, 2025
@marc-gr marc-gr merged commit 9e95dfe into elastic:main Jul 8, 2025
8 of 9 checks passed
@marc-gr marc-gr deleted the windows-fixes branch July 8, 2025 09:39
@elastic-vault-github-plugin-prod
Copy link

Package windows - 3.1.0 containing this change is available at https://epr.elastic.co/package/windows/3.1.0/

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@leehinman leehinman leehinman approved these changes

@ricardo-estc ricardo-estc ricardo-estc approved these changes

@AndersonQ AndersonQ Awaiting requested review from AndersonQ AndersonQ is a code owner automatically assigned from elastic/elastic-agent-data-plane

@VihasMakwana VihasMakwana Awaiting requested review from VihasMakwana VihasMakwana is a code owner automatically assigned from elastic/elastic-agent-data-plane

Assignees
No one assigned
Labels
documentation Improvements or additions to documentation. Applied to PRs that modify *.md files. enhancement New feature or request Integration:windows Windows Team:Security-Windows Platform Security Windows Platform team [elastic/sec-windows-platform]
Projects
None yet
Milestone
No milestone
5 participants
@marc-gr @elasticmachine @leehinman @ricardo-estc @andrewkroh