Itay Shakury
Itay Shakury
Adding this here for future reference and consideration: https://www.elastic.co/blog/ecs-elastic-common-schema-otel-opentelemetry-faq
After talking with @yanivagman we thought about some slight changes: 1. rename `args` to `fields` 2. rename `kubernetes` to `pod` (and remove pod prefix from internal fields) 3. remove parent...
> id - better if this was an integer why? > executionTime - doesn't exist, consider adding agree, but let's discuss in a separate issue as it's about adding an...
@NDStrahilevitz parsing the args (meaning, translating from machine-readable into user-readable form) is a static operation no? it could even be done by the printer or the consumer. why do we...
might be related to signature configuration issue, when signatures become events https://github.com/aquasecurity/tracee/issues/1423
can you elaborate what does it mean that a user sets the value of severity (what's the use case)? If the user doesn't care about the reported event severity and...
thanks for clarifying, so I think my comment still holds (only about tending to the severity use case)
It would be best to discuss this in the context of the feature's design, which isn't mentioned here. How do we expect users to configure this? how does it tie...
can you please give an example for how a user set configuration? it would be easiest to discuss this way
is this still relevant?