* Use v2 index templates
* Replace stateless indices with data streams
Replace legacy index template with v2 index templates
* Clean-up and document code
* Update 5_builderpackage_plugins_onpush.yml
Signed-off-by: Álex Ruiz Becerra <alejandro.ruiz.becerra@wazuh.com>
* Downgrade jackson to 2.18.2 to match OpenSearch's version
* Adapt tests
* Divide testClusters into two separates one to fix the test and allow the run
* Format files
* Fix index patterns and data streams creation
---------
Signed-off-by: Álex Ruiz Becerra <alejandro.ruiz.becerra@wazuh.com>
Co-authored-by: Jorge Sanchez <jorge.sanchez@wazuh.com>
* Add ECS source files sanitizer script
* Simplify sanitizer and improve logging
* Update schema_sanitizer to handle specific fields removal
* Update the ecs generator Dockerfile to use the sanitizer
* Improve sanitizer filtering
* Remove --ref flag from ECS generator to force the tool to use local source
* Update the Wazuh Common Schema
* Fix multi-fields deletion on sanitizer script
* Update the Wazuh Common Schema
* Fix nested fields sanitization and remove multi-fields specific fields list
* Update the Wazuh Common Schema
* Update documentation from README and scripts
Remove commented-out code
Improve methods docstrings
Add new script to README
* Restore WCS mappings modification
* Rename constants and fix styling
* Update CHANGELOG
* Revert changes on cloud-services-azure module
* Re-build WCS mappings using sanitized ECS definitions (#636)
* Re-build all the WCS index templates using the sanitized ECS
* Do not remove @timestamp on stateless modules
---------
Co-authored-by: Alex Ruiz <alejandro.ruiz.becerra@wazuh.com>
* Replace leftovers from ecs folder restructuring
Replace occurences of 'stateless-' with 'stateless/'
---------
Co-authored-by: Wazuh Indexer Bot <github_devel_xdrsiem_indexer@wazuh.com>
Co-authored-by: Alex Ruiz <alejandro.ruiz.becerra@wazuh.com>
