error[E105]: call to undefined function to_timestamp

FoxIO-LLC / LogSlash

A standard for reducing log volume without sacrificing analytical capability

Other

183 stars 17 forks source link

error[E105]: call to undefined function to_timestamp #8

Open ben-auo opened 5 days ago

ben-auo commented 5 days ago

https://github.com/FoxIO-LLC/LogSlash/blob/main/Vector/logslash-zeek_conn.toml#L27

As of Vector 0.32:

The to_timestamp function in VRL was deprecated. Instead, the following functions should be used:

parse_timestamp to parse string timestamps
from_unix_timestamp to parse integer timestamps

ben-auo commented 5 days ago

I solved with https://github.com/corelight/json-streaming-logs and .timestamp = parse_timestamp!(.ts, format: "%Y-%m-%dT%H:%M:%S%.fZ")