Fix generator.sh path on Dockerfile and update GHA to work with multi… #5
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: ECS Generator | |
| on: | |
| push: | |
| paths: | |
| - 'ecs/**' | |
| jobs: | |
| run-ecs-generator: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Checkout repository | |
| uses: actions/checkout@v4 | |
| with: | |
| fetch-depth: 2 | |
| - name: Set up Docker Buildx | |
| uses: docker/setup-buildx-action@v3 | |
| - name: Set up Docker Compose | |
| run: sudo apt-get install docker-compose | |
| - name: Extract ECS Modules and Run ECS Generator | |
| id: run-ecs-generator | |
| run: | | |
| # Fetch base branch | |
| git fetch origin +refs/heads/master:refs/remotes/origin/master | |
| # Extract the ECS module names from the modified files | |
| modified_files=$(git diff --name-only origin/master) | |
| updated_modules=() | |
| for file in $modified_files; do | |
| if [[ $file == ecs/* ]]; then | |
| ecs_module=$(echo $file | cut -d'/' -f2) | |
| if [[ ! " ${updated_modules[*]} " =~ " ${ecs_module} " ]]; then | |
| updated_modules+=("$ecs_module") | |
| fi | |
| fi | |
| done | |
| if [[ ${#updated_modules[@]} -gt 0 ]]; then | |
| export REPO_PATH=$(pwd) | |
| for ecs_module in "${updated_modules[@]}"; do | |
| # Run the ECS generator script for each module | |
| bash docker/ecs/mapping-generator.sh run "$ecs_module" | |
| echo "Processed ECS module: $ecs_module" | |
| done | |
| echo "updated_modules=${updated_modules[*]}" >> $GITHUB_ENV | |
| else | |
| echo "No modifications detected in ecs/ directory." | |
| exit 0 | |
| fi | |
| - name: Tear down ECS Generator | |
| if: always() | |
| run: bash docker/ecs/mapping-generator.sh down | |
| - name: Upload artifact | |
| if: always() | |
| uses: actions/upload-artifact@v4 | |
| with: | |
| name: ecs-template | |
| path: ecs/**/mappings/v8.11.0/generated/elasticsearch/legacy/template.json | |
| - name: Checkout target repository | |
| uses: actions/checkout@v4 | |
| with: | |
| repository: wazuh/wazuh-indexer-plugins | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| path: wazuh-indexer-plugins | |
| - name: Copy generated files to target repository | |
| run: | | |
| # Map ECS modules to target JSON filenames | |
| declare -A module_to_file=( | |
| [agent]="index-template-agent.json" | |
| [alerts]="index-template-alerts.json" | |
| [commands]="index-template-commands.json" | |
| [hardware]="index-template-hardware.json" | |
| [hotfixes]="index-template-hotfixes.json" | |
| [fim]="index-template-fim.json" | |
| [networks]="index-template-networks.json" | |
| [packages]="index-template-packages.json" | |
| [ports]="index-template-ports.json" | |
| [processes]="index-template-processes.json" | |
| [scheduled-commands]="index-template-scheduled-commands.json" | |
| [system]="index-template-system.json" | |
| [vulnerabilities]="index-template-vulnerabilities.json" | |
| ) | |
| for ecs_module in ${updated_modules[@]}; do | |
| target_file=${module_to_file[$ecs_module]} | |
| if [[ -z "$target_file" ]]; then | |
| echo "No corresponding file for module $ecs_module" | |
| exit 1 | |
| fi | |
| mkdir -p wazuh-indexer-plugins/plugins/setup/src/main/resources/ | |
| cp ecs/$ecs_module/mappings/v8.11.0/generated/elasticsearch/legacy/template.json wazuh-indexer-plugins/plugins/setup/src/main/resources/$target_file | |
| done | |
| - name: Commit and push changes | |
| run: | | |
| cd wazuh-indexer-plugins | |
| git config --global user.email "[email protected]" | |
| git config --global user.name "GitHub Actions" | |
| branch_name="update-ecs-templates" | |
| # Check if branch exists | |
| if git ls-remote --heads origin $branch_name | grep $branch_name; then | |
| git checkout $branch_name | |
| else | |
| git checkout -b $branch_name | |
| fi | |
| git add . | |
| git commit -m "Update ECS templates for modified modules: $updated_modules" | |
| git push origin $branch_name | |
| - name: Create Pull Request | |
| uses: peter-evans/create-pull-request@v4 | |
| with: | |
| token: ${{ secrets.GITHUB_TOKEN }} | |
| commit-message: "Update ECS templates for modified modules: $updated_modules" | |
| branch: update-ecs-templates | |
| title: "Update ECS templates for modified modules: $updated_modules" | |
| body: "This PR updates the ECS templates for the following modules: $updated_modules." | |
| base: master |