Upgrade packages to ECS 8.2 (3/4) (#2780)

- Updated ECS versions to 8.2 - Regenerated test expected files for certain packages

Author: taylor-swanson

packages/mattermost/_dev/build/build.yml

@@ -1,3 +1,3 @@
 dependencies:
  ecs:
- reference: git@8.0
+ reference: git@8.2

packages/mattermost/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.2.0"
+ changes:
+ - description: Update to ECS 8.2
+ type: enhancement
+ link: https://github.com/elastic/integrations/pull/2780
 - version: "1.1.1"
  changes:
  - description: Add documentation for multi-fields

packages/mattermost/data_stream/audit/_dev/test/pipeline/test-audit.log-expected.json

@@ -1,12 +1,9 @@
 ---
 description: Pipeline for processing Mattermost audit logs
 processors:
-- set:
- field: event.ingested
- value: '{{_ingest.timestamp}}'
 - set:
  field: ecs.version
- value: "8.0.0"
+ value: "8.2.0"
 - rename:
  field: message
  target_field: event.original

packages/mattermost/data_stream/audit/elasticsearch/ingest_pipeline/default.yml

@@ -13,7 +13,7 @@
  "type": "logs"
  },
  "ecs": {
- "version": "8.0.0"
+ "version": "8.2.0"
  },
  "elastic_agent": {
  "id": "b1d83907-ff3e-464a-b79a-cf843f6f0bba",

packages/mattermost/data_stream/audit/sample_event.json

@@ -136,7 +136,7 @@ An example event for `audit` looks as following:
  "type": "logs"
  },
  "ecs": {
- "version": "8.0.0"
+ "version": "8.2.0"
  },
  "elastic_agent": {
  "id": "b1d83907-ff3e-464a-b79a-cf843f6f0bba",

packages/mattermost/docs/README.md

@@ -1,7 +1,7 @@
 format_version: 1.0.0
 name: mattermost
 title: "Mattermost"
-version: 1.1.1
+version: 1.2.0
 license: basic
 description: Collect and parse logs from Mattermost with Elastic Agent.
 type: integration

packages/mattermost/manifest.yml

@@ -1,3 +1,3 @@
 dependencies:
  ecs:
- reference: git@8.0
+ reference: git@8.2

packages/microsoft_defender_endpoint/_dev/build/build.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "2.2.0"
+ changes:
+ - description: Update to ECS 8.2
+ type: enhancement
+ link: https://github.com/elastic/integrations/pull/2780
 - version: "2.1.0"
  changes:
  - description: Add possibility to choose azure resource

packages/microsoft_defender_endpoint/changelog.yml

@@ -41,7 +41,7 @@
  "path": "C:\\Windows\\Temp\\sb-sim-temp-ikyxqi\\sb_10554_bs_h4qpk5"
  },
  "ecs": {
- "version": "8.0.0"
+ "version": "8.2.0"
  },
  "related": {
  "hosts": [
@@ -69,7 +69,6 @@
  "end"
  ],
  "duration": 0,
- "ingested": "2022-01-02T01:28:49.601370210Z",
  "provider": "defender_endpoint",
  "action": "Malware",
  "end": "2020-06-30T10:07:44.333733Z",
@@ -132,7 +131,7 @@
  }
  },
  "ecs": {
- "version": "8.0.0"
+ "version": "8.2.0"
  },
  "related": {
  "user": [
@@ -168,7 +167,6 @@
  "start"
  ],
  "duration": 2442699369800,
- "ingested": "2022-01-02T01:28:49.601372227Z",
  "provider": "defender_endpoint",
  "action": "DefenseEvasion",
  "end": "2020-06-30T09:45:39.5484377Z",
@@ -220,7 +218,7 @@
  "vendor": "Microsoft"
  },
  "ecs": {
- "version": "8.0.0"
+ "version": "8.2.0"
  },
  "related": {
  "user": [
@@ -253,7 +251,6 @@
  "start"
  ],
  "duration": 2442699369800,
- "ingested": "2022-01-02T01:28:49.601373311Z",
  "provider": "defender_endpoint",
  "action": "DefenseEvasion",
  "end": "2020-06-30T09:45:39.5484377Z",
@@ -312,7 +309,7 @@
  }
  },
  "ecs": {
- "version": "8.0.0"
+ "version": "8.2.0"
  },
  "related": {
  "hosts": [
@@ -344,7 +341,6 @@
  "end"
  ],
  "duration": 892514711800,
- "ingested": "2022-01-02T01:28:49.601374271Z",
  "provider": "defender_endpoint",
  "action": "Malware",
  "end": "2020-06-30T09:46:15.0876676Z",