Change log for CLOUDFLARE_WARP
| Date | Changes |
|---|---|
| 2025-10-29 | Enhancement:
- event.idm.read_only_udm.network.http.referral_url: Newly mapped `HTTPHost` raw log field with `event.idm.read_only_udm.network.http.referral_url` UDM field. - event.idm.read_only_udm.src.ip: Newly mapped `SourceInternalIP` raw log field with `event.idm.read_only_udm.src.ip` UDM field. - event.idm.read_only_udm.src.asset.ip: Newly mapped `SourceInternalIP` raw log field with `event.idm.read_only_udm.src.asset.ip` UDM field. - event.idm.read_only_udm.network.dhcp.client_hostname: Newly mapped `VirtualNetworkName` raw log field with `event.idm.read_only_udm.network.dhcp.client_hostname` UDM field. - event.idm.read_only_udm.target.resource.attribute.labels: Newly mapped `DestinationIPContinentCode` raw log field with `event.idm.read_only_udm.target.resource.attribute.labels` UDM field. - event.idm.read_only_udm.principal.resource.attribute.labels: Newly mapped `SourceIPContinentCode` raw log field with `event.idm.read_only_udm.principal.resource.attribute.labels` UDM field. - event.idm.read_only_udm.additional.fields: Newly mapped `ForensicCopyStatus` raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - event.idm.read_only_udm.security_result.detection_fields: Newly mapped `IsIsolated` raw log field with `event.idm.read_only_udm.security_result.detection_fields` UDM field. - event.idm.read_only_udm.security_result.detection_fields: Newly mapped `Quarantined` raw log field with `event.idm.read_only_udm.security_result.detection_fields` UDM field. - event.idm.read_only_udm.security_result.detection_fields: Newly mapped `UntrustedCertificateAction` raw log field with `event.idm.read_only_udm.security_result.detection_fields` UDM field. - event.idm.read_only_udm.metadata.product_log_id: Newly mapped `RequestID` raw log field with `event.idm.read_only_udm.metadata.product_log_id` UDM field. - event.idm.read_only_udm.principal.file.sha256: Newly mapped `file_hash` raw log field with `event.idm.read_only_udm.principal.file.sha256` UDM field. - event.idm.read_only_udm.principal.file.size: Newly mapped `file_size` raw log field with `event.idm.read_only_udm.principal.file.size` UDM field. - event.idm.read_only_udm.principal.file.full_path: Newly mapped `file_name` raw log field with `event.idm.read_only_udm.principal.file.full_path` UDM field. - event.idm.read_only_udm.principal.resource.attribute.labels: Newly mapped `file_direction` raw log field with `event.idm.read_only_udm.principal.resource.attribute.labels` UDM field. - event.idm.read_only_udm.principal.file.mime_type: Newly mapped `file_type` raw log field with `event.idm.read_only_udm.principal.file.mime_type` UDM field. - event.idm.read_only_udm.security_result.action_details: Newly mapped `file_action` raw log field with `event.idm.read_only_udm.security_result.action_details` UDM field. - event.idm.read_only_udm.security_result.action: Newly mapped `file_action` raw log field with `event.idm.read_only_udm.security_result.action` UDM field. - event.idm.read_only_udm.additional.fields: Newly mapped `applicationstatuses` raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - event.idm.read_only_udm.additional.fields: Newly mapped `applicationids` raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - event.idm.read_only_udm.additional.fields: Newly mapped `applicationnames` raw log field with `event.idm.read_only_udm.additional.fields` UDM field. |
| 2025-02-02 | Enhancement:
- Added support for new set of JSON logs. |
| 2024-12-18 | Newly created parser.
|