I just opened https://github.com/apache/metron/pull/881, for a
CONTRIBUTING.md after remembering I'd done two-thirds of it forever ago.
Feel free to provide feedback on the PR.
On Wed, Dec 20, 2017 at 5:49 AM, zeo...@gmail.com wrote:
> I agree we should streamline #2 and lower the bar, and we ca
GitHub user justinleet opened a pull request:
https://github.com/apache/metron/pull/881
METRON-1071: Create CONTRIBUTING.md
## Contributor Comments
Totally forgot I'd been sitting on a half done version of this. It's
basically a stripped down version of the Development Guidelin
GitHub user cestella opened a pull request:
https://github.com/apache/metron/pull/880
METRON-1379: Add an OBJECT_GET stellar function
## Contributor Comments
With the creation of METRON-1378 we have the ability to create serialized
summaries of data. We need to interact wit
Github user asfgit closed the pull request at:
https://github.com/apache/metron/pull/871
---
GitHub user cestella opened a pull request:
https://github.com/apache/metron/pull/879
METRON-1378: Create a summarizer
## Contributor Comments
We have a nice and generalized infrastructure for loading data into HBase
and interacting with it via `flatfile_loader.sh` and `ENRICHME
Correct, nested objects in lucene indexes lead to sub-documents, which leads to
a massive drop in ingest and query rates, this is why the JSONMap parser for
example deliberately flattens the Metorn JSON object. Before this decision was
made, very early versions of OpenSOC nested enrichments for
Hi Ali,
We have recently faced some data sources that generate data in a nested
format. For example, AWS Cloudtrail generates data in the following
JSON
format:
{
"Records": [
{
"eventVersion": *"2.0"*,
"userIdentity": {
"type": *"IAMUser"*,
"principalId": *"
Just following up on this conversation again -
I have discussed this ad-hoc with a few PMC members recently and wanted to
bring it up on the list. Veracode has provided us with a 100% free portal
to scan the Metron code with, but in order to integrate, the safest option
is probably to use the ASF
Github user asfgit closed the pull request at:
https://github.com/apache/metron/pull/864
---
Github user nickwallen commented on the issue:
https://github.com/apache/metron/pull/864
I appreciate the reviews @ottobackwards and @anandsubbu .
---
So Metron enrichment and indexer are not nested aware? Is there any plan to
add that to Metron in future?
Cheers,
Ali
On Fri, Dec 22, 2017 at 12:46 AM, Otto Fowler
wrote:
> I believe right now you have to flatten.
> The jsonMap parser does this.
>
>
> On December 21, 2017 at 08:28:13, Ali Nazem
I believe right now you have to flatten.
The jsonMap parser does this.
On December 21, 2017 at 08:28:13, Ali Nazemian (alinazem...@gmail.com)
wrote:
Hi all,
We have recently faced some data sources that generate data in a nested
format. For example, AWS Cloudtrail generates data in the followi
Hi all,
We have recently faced some data sources that generate data in a nested
format. For example, AWS Cloudtrail generates data in the following JSON
format:
{
"Records": [
{
"eventVersion": *"2.0"*,
"userIdentity": {
"type": *"IAMUser"*,
"principalId":
13 matches
Mail list logo
