Skip to content

rebundle for siem#123

Open
kcorbett-hdx wants to merge 34 commits into
mainfrom
LOTC-691-siem-bundle-v2
Open

rebundle for siem#123
kcorbett-hdx wants to merge 34 commits into
mainfrom
LOTC-691-siem-bundle-v2

Conversation

@kcorbett-hdx

@kcorbett-hdx kcorbett-hdx commented Mar 17, 2026
edited
Loading

Copy link
Copy Markdown
Collaborator

rebundle for siem

@kcorbett-hdx kcorbett-hdx added skip-bundle-ci Skips all CI workflows skip-bundle-format Skips bundle formatting; validates bundles labels Mar 17, 2026
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env March 17, 2026 16:13 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx removed the skip-bundle-format Skips bundle formatting; validates bundles label Mar 17, 2026
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env March 17, 2026 16:47 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env March 17, 2026 16:56 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx removed the skip-bundle-ci Skips all CI workflows label Mar 17, 2026
@kcorbett-hdx kcorbett-hdx added the skip-bundle-format Skips bundle formatting; validates bundles label Mar 17, 2026
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env March 17, 2026 18:45 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env March 17, 2026 18:45 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx removed the skip-bundle-format Skips bundle formatting; validates bundles label Mar 17, 2026
@kcorbett-hdx kcorbett-hdx changed the title Lotc 691 siem bundle v2 rebundle for siem Mar 17, 2026
@kcorbett-hdx kcorbett-hdx mentioned this pull request Mar 18, 2026
Closed
@kcorbett-hdx kcorbett-hdx added the skip-bundle-format Skips bundle formatting; validates bundles label Mar 23, 2026
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env March 23, 2026 22:52 — with GitHub Actions Inactive
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env March 31, 2026 20:04 — with GitHub Actions Inactive
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env March 31, 2026 20:04 — with GitHub Actions Inactive
@kevinborkman-hub @claude
Fix reqTimeSec -> timestamp in Akamai SIEM first panel
d3e50d7 
The siem transform uses timestamp as the primary column, not reqTimeSec.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env March 31, 2026 20:51 — with GitHub Actions Inactive
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env March 31, 2026 20:51 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env April 1, 2026 21:31 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx temporarily deployed to bundle-validator-env April 1, 2026 21:31 — with GitHub Actions Inactive
@hdx-leonardo hdx-leonardo temporarily deployed to bundle-validator-env April 6, 2026 12:47 — with GitHub Actions Inactive
@hdx-leonardo hdx-leonardo temporarily deployed to bundle-validator-env April 6, 2026 12:47 — with GitHub Actions Inactive
kevinborkman-hub and others added 2 commits April 7, 2026 14:47
@kevinborkman-hub @claude
Flatten trafficpeak/siem bundle — remove 0.9.0 version directory
221827d 
Move all contents from trafficpeak/siem/0.9.0/ up to trafficpeak/siem/
and update base_url to match. Aligns with LOTC-1348 flat directory structure.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@kevinborkman-hub
Merge remote-tracking branch 'origin/main' into LOTC-691-siem-bundle-v2
8436f39
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env April 7, 2026 18:48 — with GitHub Actions Inactive
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env April 7, 2026 18:48 — with GitHub Actions Inactive
kevinborkman-hub and others added 2 commits April 15, 2026 15:54
@kevinborkman-hub
Merge remote-tracking branch 'origin/main' into LOTC-691-siem-bundle-v2
a25050a
@kevinborkman-hub @claude
LOTC-691: rebundle siem
222c8bc 
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env April 15, 2026 19:57 — with GitHub Actions Inactive
github-actions Bot and others added 2 commits April 15, 2026 19:58
@github-actions
[skip ci] Auto-format bundles via bundle-ci
736b960
@kevinborkman-hub @claude
LOTC-691: fix reqTimeSec -> timestamp in siem dashboards + originals,…
1526eb7 
… rebundle for CI

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@kevinborkman-hub kevinborkman-hub temporarily deployed to bundle-validator-env April 15, 2026 20:31 — with GitHub Actions Inactive
@kcorbett-hdx kcorbett-hdx removed the skip-bundle-format Skips bundle formatting; validates bundles label Apr 15, 2026
kevinborkman-hub and others added 5 commits April 28, 2026 15:01
@kevinborkman-hub
Merge remote-tracking branch 'origin/main' into LOTC-691-siem-bundle-v2
0c9fdac
@kevinborkman-hub @claude
LOTC-691: rebundle siem after main merge
e2a0d07 
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@github-actions
[skip ci] Auto-format bundles via bundle-ci
5cb6da3
@kevinborkman-hub @claude
LOTC-691: refresh stale primary timestamp in trafficpeak/siem sample …
24c9fe6 
…data

Auto-shifter doesn't handle nested JSON pointers (httpMessage/start);
patched .originals embedded sample_data.httpMessage.start from
1491303422 (2017-04-04) to 1775001600 (2026-04-01) so the freshness
validator passes. Pipeline limitation tracked separately.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
@github-actions
[skip ci] Auto-format bundles via bundle-ci
5c6e993
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@kevinborkman-hub kevinborkman-hub kevinborkman-hub left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kcorbett-hdx @kevinborkman-hub @hdx-leonardo