google_scc: fix field name typo

Author: efd6

packages/google_scc/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.4.1"
+ changes:
+ - description: Fix field name typo.
+ type: bugfix
+ link: https://github.com/elastic/integrations/pull/11053
 - version: "1.4.0"
  changes:
  - description: Removed import_mappings. Update the kibana constraint to ^8.13.0. Modified the field definitions to remove ECS fields made redundant by the ecs@mappings component template.

packages/google_scc/data_stream/asset/_dev/test/pipeline/test-asset.log-expected.json

@@ -371,7 +371,7 @@
  "log_type": "DATA_READ"
  },
  {
- "exemted_members": [
+ "exempted_members": [
  "user:aliya@example.com"
  ],
  "log_type": "DATA_WRITE"

packages/google_scc/data_stream/asset/elasticsearch/ingest_pipeline/pipeline_asset.yml

@@ -208,7 +208,7 @@ processors:
  "auditConfigs": "audit_configs"
  "auditLogConfigs": "audit_log_configs"
  "logType": "log_type"
- "exemptedMembers": "exemted_members"
+ "exemptedMembers": "exempted_members"
  tag: painless_to_rename_fields_under_iamPolicy_auditConfigs_object
  source: |
  def renameKeys(Map json, Map keyMap) {

packages/google_scc/data_stream/asset/fields/fields.yml

@@ -118,7 +118,7 @@
  - name: audit_log_configs
  type: group
  fields:
- - name: exemted_members
+ - name: exempted_members
  type: keyword
  description: Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
  - name: log_type
@@ -384,7 +384,7 @@
  - name: audit_log_configs
  type: group
  fields:
- - name: exemted_members
+ - name: exempted_members
  type: keyword
  description: Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members.
  - name: log_type

packages/google_scc/docs/README.md

@@ -262,7 +262,7 @@ An example event for `asset` looks as following:
 | google_scc.asset.access_policy.scopes | The scopes of a policy define which resources an ACM policy can restrict, and where ACM resources can be referenced. For example, a policy with scopes=["folders/123"] has the following behavior: - vpcsc perimeters can only restrict projects within folders/123 - access levels can only be referenced by resources within folders/123. If empty, there are no limitations on which resources can be restricted by an ACM policy, and there are no limitations on where ACM resources can be referenced. Only one policy can include a given scope (attempting to create a second policy which includes "folders/123" will result in an error). Currently, scopes cannot be modified after a policy is created. Currently, policies can only have a single scope. Format: list of folders/\{folder_number\} or projects/\{project_number\}. | keyword |
 | google_scc.asset.access_policy.title | Required. Human readable title. Does not affect behavior. | keyword |
 | google_scc.asset.ancestors | The ancestry path of an asset in Google Cloud resource hierarchy, represented as a list of relative resource names. An ancestry path starts with the closest ancestor in the hierarchy and ends at root. If the asset is a project, folder, or organization, the ancestry path starts from the asset itself. Example: ["projects/123456789", "folders/5432", "organizations/1234"]. | keyword |
-| google_scc.asset.iam_policy.audit_configs.audit_log_configs.exemted_members | Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. | keyword |
+| google_scc.asset.iam_policy.audit_configs.audit_log_configs.exempted_members | Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. | keyword |
 | google_scc.asset.iam_policy.audit_configs.audit_log_configs.log_type | The log type that this config enables. | keyword |
 | google_scc.asset.iam_policy.audit_configs.service | Specifies a service that will be enabled for audit logging. For example, storage.googleapis.com, cloudsql.googleapis.com. allServices is a special value that covers all services. | keyword |
 | google_scc.asset.iam_policy.bindings.condition | The condition that is associated with this binding. If the condition evaluates to true, then this binding applies to the current request. If the condition evaluates to false, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the IAM documentation. | flattened |
@@ -324,7 +324,7 @@ An example event for `asset` looks as following:
 | google_scc.asset.prior.access_policy.scopes | The scopes of a policy define which resources an ACM policy can restrict, and where ACM resources can be referenced. For example, a policy with scopes=["folders/123"] has the following behavior: - vpcsc perimeters can only restrict projects within folders/123 - access levels can only be referenced by resources within folders/123. If empty, there are no limitations on which resources can be restricted by an ACM policy, and there are no limitations on where ACM resources can be referenced. Only one policy can include a given scope (attempting to create a second policy which includes "folders/123" will result in an error). Currently, scopes cannot be modified after a policy is created. Currently, policies can only have a single scope. Format: list of folders/\{folder_number\} or projects/\{project_number\}. | keyword |
 | google_scc.asset.prior.access_policy.title | Required. Human readable title. Does not affect behavior. | keyword |
 | google_scc.asset.prior.ancestors | The ancestry path of an asset in Google Cloud resource hierarchy, represented as a list of relative resource names. An ancestry path starts with the closest ancestor in the hierarchy and ends at root. If the asset is a project, folder, or organization, the ancestry path starts from the asset itself. Example: ["projects/123456789", "folders/5432", "organizations/1234"]. | keyword |
-| google_scc.asset.prior.iam_policy.audit_configs.audit_log_configs.exemted_members | Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. | keyword |
+| google_scc.asset.prior.iam_policy.audit_configs.audit_log_configs.exempted_members | Specifies the identities that do not cause logging for this type of permission. Follows the same format of Binding.members. | keyword |
 | google_scc.asset.prior.iam_policy.audit_configs.audit_log_configs.log_type | The log type that this config enables. | keyword |
 | google_scc.asset.prior.iam_policy.audit_configs.service | Specifies a service that will be enabled for audit logging. For example, storage.googleapis.com, cloudsql.googleapis.com. allServices is a special value that covers all services. | keyword |
 | google_scc.asset.prior.iam_policy.bindings.condition | The condition that is associated with this binding. If the condition evaluates to true, then this binding applies to the current request. If the condition evaluates to false, then this binding does not apply to the current request. However, a different role binding might grant the same role to one or more of the principals in this binding. To learn which resources support conditions in their IAM policies, see the IAM documentation. | flattened |

packages/google_scc/manifest.yml

@@ -1,7 +1,7 @@
 format_version: "3.0.3"
 name: google_scc
 title: Google Security Command Center
-version: "1.4.0"
+version: "1.4.1"
 description: Collect logs from Google Security Command Center with Elastic Agent.
 type: integration
 categories: