logstash-filter-grok icon indicating copy to clipboard operation
logstash-filter-grok copied to clipboard

verified publisher icon logstash-plugins

Metadata

Grok plugin to parse unstructured (log) data into something structured.

Results 64 logstash-filter-grok issues
Sort by recently updated
recently updated
newest added

Behaviour when pattern writes to same input field (without "overwrite" option)

1 comment

The behaviour of a grok where a semantic is named the same as the input field is not described in the documentation, and is counter-intuitive. e.g.: ``` input { generator...

hackery avatar hackery

adding two missing quotes

1 comment

Thanks for contributing to Logstash! If you haven't already signed our CLA, here's a handy link: https://www.elastic.co/contributor-agreement/

mattyhead avatar mattyhead

status:needs-triage

Load grok patterns from `/etc/logstash/patterns`

8 comment

Currently this plugin loads patterns from the `patterns/` directory within `logstash-patterns-core` and also from `$LOGSTASH_HOME/patterns` by default: ``` @@patterns_path ||= Set.new @@patterns_path += [ LogStash::Patterns::Core.path, LogStash::Environment.pattern_path("*") ] ``` On Logstash...

joshuaspence avatar joshuaspence

Add link to grok debugger

1 comment

Supersedes #115 Supersedes #122

yaauie avatar yaauie

status:needs-review

[Test Failure] Syslog grok tests are failing on Logstash 8.x

A number of syslog specs are failing on Logstash 8.x: ``` logstash_1_4ac9a179a5f3 | 1) LogStash::Filters::Grok ietf 5424 syslog line 1 2009-06-30T18:30:00+02:00 paxton.local grokdebug - - [id1 foo="bar"] No process ID....

robbavey avatar robbavey

test failure

Minor typo in docs from #169

Minor correction syntax error/typo in commit 64555883e55608123e1cf332b2326534768da409 (#169) Would you like for me to reference this pull request along side the original in `CHANGELOG.md` as well? 🙏

zembtach avatar zembtach

status:approved

Overwrite improvements

- Better field references handling ([issue 173](https://github.com/logstash-plugins/logstash-filter-grok/issues/173)). - Better handling of the interaction between `overwrite` and `target` settings.

bptrgx avatar bptrgx

status:needs-triage

Grok debuggers and type conversions noted

1 comment

The grok debuggers do not accept the logstash `:int ` conversion. Had me confused for ages. Thanks for contributing to Logstash! If you haven't already signed our CLA, here's a...

jmkgreen avatar jmkgreen

docs
status:needs-triage

Add an 'output_objects' config that builds an object for each grok performed

Previous functionality grouped each field by name meaning you lost all context about your events: ```json { "logsource": [ "evita", "evita" ], "message": [ "connect from camomile.cloud9.net[168.100.1.3]", "connect from steve.cloud9.net[168.100.1.4]"...

w4 avatar w4

enhancement
status:needs-triage

Incoherent behavior of field references with overwrite

**Logstash information**: Please include the following information: 1. Logstash version (e.g. `bin/logstash --version`) 7.x **Description of the problem including expected versus actual behavior**: The following filters should be equivalent, but...

lucabelluccini avatar lucabelluccini

bug

Metadata

122
Stars
97
Forks
Watchers

Owner

verified publisher icon logstash-plugins

Metadata

Grok plugin to parse unstructured (log) data into something structured.

Back