Change log for TABLEAU

Date	Changes
2026-01-09	Enhancement: - `event.idm.read_only_udm.principal.hostname`: Newly mapped "Computer" raw log field with `event.idm.read_only_udm.principal.hostname` UDM field. - `event.idm.read_only_udm.security_result.first_discovered_time`: Newly mapped "TimeGenerated" raw log field with `event.idm.read_only_udm.security_result.first_discovered_time` UDM field. - `event.idm.read_only_udm.security_result.last_discovered_time`: Newly mapped "_TimeReceived" raw log field with `event.idm.read_only_udm.security_result.last_discovered_time` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "_IsBillable" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "_BilledSize" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "_Internal_WorkspaceResourceId" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "_ItemId" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "TenantId" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "_SubscriptionId" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.principal.resource.id`: Newly mapped "_ResourceId" raw log field with `event.idm.read_only_udm.principal.resource.id` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "FilePath" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped "Type" raw log field with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.metadata.description`: Newly mapped "temp_message" raw log field with `event.idm.read_only_udm.metadata.description` UDM field. - `event.idm.read_only_udm.principal.application`: Newly mapped "temp_logger_name" raw log field with `event.idm.read_only_udm.principal.application` UDM field. - `event.idm.read_only_udm.principal.process.pid`: Newly mapped "temp_pid" raw log field with `event.idm.read_only_udm.principal.process.pid` UDM field. - `event.idm.read_only_udm.principal.process.file.full_path`: Newly mapped "temp_thread_name" raw log field with `event.idm.read_only_udm.principal.process.file.full_path` UDM field. - `event.idm.read_only_udm.security_result.severity`: Newly mapped "temp_log_level" raw log field with `event.idm.read_only_udm.security_result.severity` UDM field.
2025-12-17	Enhancement: - Added a grok pattern to parse the new log formats. - `event.idm.read_only_udm.metadata.product_event_type`: Newly mapped `appname` raw log field with `event.idm.read_only_udm.metadata.product_event_type` UDM field. - `event.idm.read_only_udm.metadata.product_log_id`: Newly mapped `id2` raw log field with `event.idm.read_only_udm.metadata.product_log_id` UDM field. - `event.idm.read_only_udm.observer.process.pid`: Newly mapped `pid` raw log field with `event.idm.read_only_udm.observer.process.pid` UDM field. - `event.idm.read_only_udm.metadata.event_timestamp`: Newly mapped `timestamp` raw log field with `event.idm.read_only_udm.metadata.event_timestamp` UDM field. - `event.idm.read_only_udm.principal.user.userid`: Newly mapped `user` raw log field with `event.idm.read_only_udm.principal.user.userid` UDM field. - `event.idm.read_only_udm.network.session_id`: Newly mapped `id1` raw log field with `event.idm.read_only_udm.network.session_id` UDM field. - `event.idm.read_only_udm.observer.process.command_line`: Newly mapped `logger` raw log field with `event.idm.read_only_udm.observer.process.command_line` UDM field. - `event.idm.read_only_udm.security_result.severity`: Newly mapped `loglevel` raw log field with `event.idm.read_only_udm.security_result.severity` UDM field. - `event.idm.read_only_udm.target.user.userid`: Newly mapped `user_id` raw log field with `event.idm.read_only_udm.target.user.userid` UDM field. - `event.idm.read_only_udm.target.resource.id`: Newly mapped `site_id` raw log field with `event.idm.read_only_udm.target.resource.id` UDM field. - `event.idm.read_only_udm.metadata.description`: Newly mapped `message` raw log field with `event.idm.read_only_udm.metadata.description` UDM field. - `event.idm.read_only_udm.target.resource.name`: Newly mapped `script_type` raw log field with `event.idm.read_only_udm.target.resource.name` UDM field. - `event.idm.read_only_udm.additional.fields`: Newly mapped `id3`, `thread` raw log fields with `event.idm.read_only_udm.additional.fields` UDM field. - `event.idm.read_only_udm.security_result.summary`: Newly mapped `function_name` raw log field with `event.idm.read_only_udm.security_result.summary` UDM field.
2024-12-19	Enhancement: - Mapped "Content" to "metadata.description". - Mapped "http_version" to "network.application_protocol_version".
2024-07-09	Enhancement: - Added a Grok pattern to identify full_path filled values. - Added if condition to check null or not.
2024-06-03	- Reviewer-suggested.