[Auditd] Populate process.args array with process arguments (elastic#…

…2730) Prevents the indices exceeding the 10,000 field limit due to an arbitrarily large number of aNN fields. This is a combination of the following Filebeat module fixes: - elastic/beats#29601 - elastic/beats#30382 Updates version to 2.1.0
build-security · Feb 23, 2022 · 6e9cc5f · 6e9cc5f
1 parent 7af31f3
commit 6e9cc5f
Show file tree

Hide file tree

Showing 8 changed files with 1,605 additions and 1,344 deletions.
diff --git a/packages/auditd/changelog.yml b/packages/auditd/changelog.yml
@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "2.1.0"
+  changes:
+    - description: Store EXECVE arguments in process.args array.
+      type: enhancement
+      link: https://github.com/elastic/integrations/pull/2730
 - version: "2.0.0"
   changes:
     - description: Update to ECS 8.0