Edge Delta Release Notes

Elastic API Input, EDXLookup Function, Extended Fleet Types, Performance Optimizations, and Enhanced Authentication Support.

Apache Kudu destination, Splunk TCP output, EDXCode function (Beta), exponential histogram support, and OTLP gRPC transport hardening.

SNMP Trap Source Node, SNMP Pull Source Node, Syslog Source Node, and Splunk TCP Source Node.

Deotel Processor, Source Detection Enhancements, Telemetry Generator Template Improvements, and Telemetry Generator Trace Enhancements.

HTTP Pull/Output OAuth2.0 Support, Telemetry Generator Source Released, Distinct Count Aggregation in Aggregate Metrics, and Rate Limiter for Non-Push Sources.

Warning for External ID with Assume Role, OTLP Output Header Support, Nil Check for Stats in Obs Report, and CEL Transform Concurrent Map Write.

Source-based Metadata Filtering, Lookup Processor Matching Modes, TelemetryGen Source Node, and Securonix Output Node.

Node, gateway, and coordinator pipelines, Windows Event Source, OTTL Conditional Functions, and Trace and Span ID to Log Items.

Version Requirement Bug.

CrowdStrike FDR Source, Log Parsing Mode for Kubernetes Input, Agent Identifier to Self Telemetry, and ed.pipeline.node.category & Component to Agent Self Logs.

Source Detection, Validate Cloud Fleet HTTP Source Ports, Logging Behavior Refactoring, and Helm Chart Repository URL.

Compactor Improvements, Changed Compactor deployment model from StatefulSet to Deployment, Horizontal Pod Autoscaler (HPA) behavior for compactors, and fleet_type and agent_type to heartbeat metrics.

Multiprocessor nodes, enabling multiple processors within a single, Live Capture support to allow real-time data ingestion, new Google Cloud Logging output node that uses, and Released the demo template source to Beta.

OTLP Destination, Source Detection, Health Metrics Expanded, and OTTL Dynamic Indexing Support.

New helm chart variables have been added and, HTTP Pull Input Logging, Validate config with environment type, and Kubernetes Traffic Node Renamed.

HTTP Pull Source Node, OTTL Type Introspection, Prometheus Exporter Node Refactor, and Self Telemetry Integration for Agent Stats.

Health Metrics for All Nodes & Components, Support for Compression/Decompression in OTTL, Enable pprof from UI with TTL per Fleet, and Severity Text to Pattern Item Attributes.

Metric Aggregation, Extract Metric Node, Datadog Source Node, and Prometheus Source Node.

Demo Templates, Advanced Log Pattern Configuration, Stateful Metric Processing, and Otel Log Item Integration.

Crowdstrike Falcon LogScale Destination, IBM QRadar Destination, Dynatrace Destination, and OTTL Extension.

Gigamon AMX Demo Source, Microsoft DNS Demo Source, Minimum Agent Version Support, and OTTL Array Type Handling.

Prometheus Remote Write Destination, Support for Isolated Node Testing with JSON Items, Enhanced Port Validation, and New Relic Endpoints Configuration.

Amazon CloudWatch Destination Node, Azure Log Analytics Destination Node, Microsoft Sentinel Destination Node, and EDXEncode OTTL Function.

OTTL Condition Support in Route Node, eBPF Support for Azure and Azure CNI, enables the Edge Delta service, and Kubernetes Traffic Metrics Naming Convention.

Consolidated Edge Delta Destination Node, Log Deduplication Processor, Google Pub/Sub Input Support, and OpenSSL and Golang Crypto/TLS Decryption.

Domain for K8s Metrics, Node Status Updates, Cisco ASA Log Formatting, and Multi-Select Option Support.

Kubernetes Trace source, OTTL Transform Node, Cisco ASA Format Support in Demo source node, and Dynamic Pattern Location for grok and Regex filter.

MicroK8s Compatibility, Agent Shutdown Stability, Kubernetes Parsing Correction, and Expanded Log Output Formats.

Optimized Kubernetes API Interaction, Wildcard Field Support, Cached Environment Variables, and Map Folding Functions.

New CEL Macros, HTTP Output Batching, Custom File Discovery under Kubernetes Input, and Demo Log.

Enhanced Kubernetes Input Source Detection, Debug Output Stability, Refinement in Metrics Collection, and Google Cloud Logging API Limitations.

Conversion to OTEL Definition, CEL Evaluations Optimization, Pod Listener Caching, and CEL Version Update.

S3 Input Compression Selection Support, HTTP Protocol Support for OTLP Input Nodes, Environment Variable Masking, and gRPC Metadata Security Fix.

Health Data Upload Fix, Granular Stream Stats, CEL Function, and Health Data Debugging.

This release contains a critical bug. All agents running version 1.13.0 must upgrade to v1.14.0.

Splunk Output Update, k8s.container.name to Pod Info Extraction, Health Check for OTLP Input, and Support for service.name in *nix Environments.

new Knowledge Library has been released, providing solutions, Fleets on the Pipelines, Support for OTEL Log Format, and Helm Chart Improvements.

Google Cloud Logging Output node is introduced in, S3 input and JSON Unroll is introduced in, Horizontal Pod Autoscaler (HPA) is introduced, and Resource Transform nodes have relaxed restrictions when applied.

Resource Transform to transform the resource parameters, New Relic Output to send data to your, TCP Output node and the Local Storage Output, and health data reporting of last_error to improve API.

missing resources in HTTP Input, TCP Input and, demo node input issue regarding timestamps, software dependencies for the Edge Delta agent to, and health and EDAC ingestion.

OTLP input node to collect raw logs or, Demo input node by adding additional log types, validation on the Enrich and Log Transform nodes, and support for nested Compound Nodes, and.

Continued to deprecate the custom Edge Delta schema in favor of standardization on the OTEL schema for v3 configurations.

The agent release introduces Compound Nodes - an aggregation of pipeline nodes that you can add to a pipeline as a single object - as a beta feature.

the Output Transform node was upgraded to support removal of metric attributes to improve pipeline optimization.

Ed a critical bug. Please upgrade to v0.1.94.

Introduced the beta Prometheus output node to enable the Edge Delta pipeline to send metrics to Prometheus.

Improved back end stability and performance. In addition, it improved the Datadog Mapper node by allowing a custom dd_hostname and it contains CEL improvements such as the introduction of a CEL macro for converting timestamps.

D added support for case lower/upper control in data streams.

Added name validation to integrations. As with node names, integration names containing a period character (.) will not pass validation.

Improved configuration validation for duration and CEL macro fields.

Improved parsing of JSON attributes to allow for more precise data extraction from JSON logs.

Improved agent metric reporting including agent health among other stability and performance improvements.

Improved log to pattern node sampling and the Slack integration payload.

Fixed a log transform upsert bug. It improved pipeline reliability for metrics collection and it reduced error suppression for agent start logs.

Improved log transform upsert functionality and validation. It also reduced alert noise caused by the Webhook output node.

Improved collection of health and I/O metrics from visual pipeline nodes.

TCP Output, HTTP Output, and FluentD Output.

Fixed a trace log issue that caused higher than normal trace traffic.

JSON Parse, Log Transform, Output Transform, and Splunk Mapper.

Defaults to the OTEL schema for log data types.

Reduced memory usage when handling EBPF packets. It introduced the Pipeline IO Stats input node to enable IO stats reporting, and it exposed the item_schema agent setting to enable schema switching.

Introduced aggregator agent support for the Top-K and Log to Pattern nodes.

The beta Docker Input Node for Visual Pipelines.

Improved Prometheus integration behavior in the event of a source change.

Exposes bulk indexer configurations to help debug issues and enable better configuration of elastic clients.

TCP Output, HTTP Output, Microsoft Teams Output, and Webhook Output.

Kubernetes Input, File Input, Log to Pattern, and Log to Metric.

Improved back end stability and performance.

Improved back end stability and performance.

Improved enrichment logic to deal with aliases and reserved keywords.

This version improved log search and hosted agent performance as well as backend stability.

Introduced support for a specifying a worker count for Elastic and OpenSearch data destinations to improve peak traffic performance.

Improved back end stability and performance.

Improves Elastic integration performance by adding validation for send as is configurations.

Improved retry performance for S3 archiving and it adds the option to remove root names for Wavefront.

Improved agent performance with pre-start agent validation. It also removed the PVC dependency from aggregators and it added a more granular drop metric column option.

Improved the Helm template and added template validation.

Improved essential metric reporting and optimized S3 usage by reducing the file count.

Improved handling of agent health data as well as improved Elastic integration.

Improved handling of agent health data and it implemented a number of performance fixes.

Improved regex processor and log to metric performance. It also added options for handling internal certificates.

Improved back end stability and performance.

Added an option to disable TLS certificate verification for Elastic Streaming destinations.

Improved agent and back end stability and performance.

Improved stability and performance. In addition, Edge Delta Anomaly Context (EDAC) logs were improved for Amazon S3.

Made particular improvements to filter error handling and improved hosted agent environment performance among other backend stability and performance improvements.

Improved regex processors by making it easier to identify dimension group metrics using a custom suffix.

Improved agent and back end stability and performance.

Improved the querying experience for customers who use Elastic destinations.

Added support for enriching logs using K8s controller information.

Improved agent functionality and performance particularly for Elastic and Datadog.

Improved stability and performance. In addition, an Enrichment filter that uses a script function was released.

Improved Prometheus integration. Rule metrics in Prometheus now work end to end.

Improved agent and back end stability and performance.

Added a new filter that can perform JavaScript enrichment and log transformation.

Added support in the numeric capture regex processor for multiple dimension groups with a range of metric types.

Added Transport Layer Security (TLS) configuration support for S3-compatible archive destinations.

Improved the Ratio Processor which is now out of Beta.

Enhancements and bug fixes; review the noteworthy updates.

Enhancements and bug fixes; review the noteworthy updates.

Backend enhancements and bug fixes.

Enhancements and bug fixes; review the noteworthy updates.

Enhancements and bug fixes; review the noteworthy updates.

Enhancements and bug fixes; review the noteworthy updates.

Log enrichment updates, Numeric Capture adjustments, Sumo Logic JSON option, and AWS/JSON enrichment enhancements.

Enhancements and bug fixes; review the noteworthy updates.

Enhancements and bug fixes; review the noteworthy updates.

Enhancements and bug fixes; review the noteworthy updates.

CloudTrail Format, Output Transform nodes can now send transformed logs, Custom HTTP Headers, and Streamer Component.

Grok, Google Cloud Logging Node, Custom HTTP Headers, and Splunk Integration.

Changed the release status of compound nodes from, Loki and NewRelic Output Nodes, Self-Logs Metadata, and extraction of timestamps from messages, ensuring timely logging.

Mask node now includes a number of regex, Metrics Generation for Log Threshold Monitors, Health Signal Enhancements in Debug Output, and Elastic Output Warning Suppression.

Kafka input and Kafka output nodes were released, Loki output node was released to beta, Debug Output node was released to beta, and Demo input node validation was improved.