From 220c75df5616e63180557873f5924e0aa540cc35 Mon Sep 17 00:00:00 2001
From: Malena Casas <malena.casas@wazuh.com>
Date: Wed, 9 Oct 2024 14:02:48 -0300
Subject: [PATCH] Upgrade integrations to the last version (#447)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

* Upgrade third-party integrations to latest product versions (#368)

* Upgrade third-party integrations to latest product versions

* Improve comtability matrix

* Change versions in /integrations/.env

Signed-off-by: Malena Casas <malena.casas@wazuh.com>

* Fix Splunk integrations (#362)

* Add table with the version of the integrations

* Update CHANGELOG.md

Signed-off-by: Álex Ruiz <alejandro.ruiz.becerra@wazuh.com>

---------

Signed-off-by: Malena Casas <malena.casas@wazuh.com>
Signed-off-by: Álex Ruiz <alejandro.ruiz.becerra@wazuh.com>
Co-authored-by: Álex Ruiz <alejandro.ruiz.becerra@wazuh.com>
Co-authored-by: JuanGarriuz <juangarriuz@gmail.com>
---
 CHANGELOG.md                                |  1 +
 integrations/README.md                      |  7 +++++++
 integrations/docker/.env                    | 12 ++++++------
 integrations/splunk/wazuh-amazon-aws        |  6 +-----
 integrations/splunk/wazuh-incident-response |  6 +-----
 integrations/splunk/wazuh-malware-detection |  6 +-----
 integrations/splunk/wazuh-pci-dss           |  8 ++------
 integrations/splunk/wazuh-security-events   |  8 ++------
 integrations/splunk/wazuh-vulnerabilities   |  6 +-----
 9 files changed, 22 insertions(+), 38 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index f8926a81474c5..f946579e95594 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -9,6 +9,7 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 ### Dependencies
 
 ### Changed
+- Upgrade third-party integrations to the latest versions ([#447](https://github.com/wazuh/wazuh-indexer/pull/447))
 
 ### Deprecated
 
diff --git a/integrations/README.md b/integrations/README.md
index bab4504f78324..6fadeb758b31e 100644
--- a/integrations/README.md
+++ b/integrations/README.md
@@ -24,3 +24,10 @@ We host development environments to support the following integrations:
 - [Splunk](./splunk/README.md).
 - [Elasticsearch](./elastic/README.md).
 - [OpenSearch](./opensearch/README.md).
+
+**Compatibility matrix**
+
+|                | Wazuh | Logstash | OpenSearch | Elastic | Splunk |
+| -------------- | ----- | -------- | ---------- | ------- | ------ |
+| v1.0           | 4.8.1 | 8.9.0    | 2.14.0     | 8.14.3  | 9.1.4  |
+| Latest version | 4.9.0 | 8.9.0    | 2.17.1     | 8.15.2  | 9.3.1  |
diff --git a/integrations/docker/.env b/integrations/docker/.env
index 1ffa39b78b108..7c90aba1e7203 100644
--- a/integrations/docker/.env
+++ b/integrations/docker/.env
@@ -20,25 +20,25 @@ KIBANA_PORT=5602
 MEM_LIMIT=1073741824
 
 # Wazuh version
-WAZUH_VERSION=4.8.1
+WAZUH_VERSION=4.9.0
 
 # Wazuh Indexer version (Provisionally using OpenSearch)
-WAZUH_INDEXER_VERSION=2.14.0
+WAZUH_INDEXER_VERSION=2.13.0
 
 # Wazuh Dashboard version (Provisionally using OpenSearch Dashboards)
-WAZUH_DASHBOARD_VERSION=2.14.0
+WAZUH_DASHBOARD_VERSION=2.13.0
 
 # Wazuh certs generator version
 WAZUH_CERTS_GENERATOR_VERSION=0.0.1
 
 # OpenSearch destination cluster version
-OS_VERSION=2.14.0
+OS_VERSION=2.17.1
 
 # Logstash version:
 LOGSTASH_OSS_VERSION=8.9.0
 
 # Splunk version:
-SPLUNK_VERSION=9.1.4
+SPLUNK_VERSION=9.3.1
 
 # Version of Elastic products
-STACK_VERSION=8.14.3
+STACK_VERSION=8.15.2
diff --git a/integrations/splunk/wazuh-amazon-aws b/integrations/splunk/wazuh-amazon-aws
index 84cd253410bb2..c2d4db71d0bce 100644
--- a/integrations/splunk/wazuh-amazon-aws
+++ b/integrations/splunk/wazuh-amazon-aws
@@ -83,11 +83,7 @@
       "type": "input.timerange",
       "options": {
         "token": "global_time",
-        "defaultValue": "-60m@m,now",
-        "queryParameters": {
-          "latest": "$global_time.latest$",
-          "earliest": "$global_time.earliest$"
-        }
+        "defaultValue": "-60m@m,now"
       },
       "title": "Global Time Range"
     }
diff --git a/integrations/splunk/wazuh-incident-response b/integrations/splunk/wazuh-incident-response
index 7b9f20005ff08..247cec3303b01 100644
--- a/integrations/splunk/wazuh-incident-response
+++ b/integrations/splunk/wazuh-incident-response
@@ -82,11 +82,7 @@
       "type": "input.timerange",
       "options": {
         "token": "global_time",
-        "defaultValue": "-60m@m,now",
-        "queryParameters": {
-          "latest": "$global_time.latest$",
-          "earliest": "$global_time.earliest$"
-        }
+        "defaultValue": "-60m@m,now"
       },
       "title": "Global Time Range"
     }
diff --git a/integrations/splunk/wazuh-malware-detection b/integrations/splunk/wazuh-malware-detection
index 620e8bbb37116..70c825efabb01 100644
--- a/integrations/splunk/wazuh-malware-detection
+++ b/integrations/splunk/wazuh-malware-detection
@@ -83,11 +83,7 @@
       "type": "input.timerange",
       "options": {
         "token": "global_time",
-        "defaultValue": "-60m@m,now",
-        "queryParameters": {
-          "latest": "$global_time.latest$",
-          "earliest": "$global_time.earliest$"
-        }
+        "defaultValue": "-60m@m,now"
       },
       "title": "Global Time Range"
     }
diff --git a/integrations/splunk/wazuh-pci-dss b/integrations/splunk/wazuh-pci-dss
index 681acc9193b81..84748831a9790 100644
--- a/integrations/splunk/wazuh-pci-dss
+++ b/integrations/splunk/wazuh-pci-dss
@@ -83,11 +83,7 @@
       "type": "input.timerange",
       "options": {
         "token": "global_time",
-        "defaultValue": "-60m@m,now",
-        "queryParameters": {
-          "latest": "$global_time.latest$",
-          "earliest": "$global_time.earliest$"
-        }
+        "defaultValue": "-60m@m,now"
       },
       "title": "Global Time Range"
     }
@@ -133,4 +129,4 @@
   },
   "description": "",
   "title": "wazuh-pci-dss-v1.0"
-}
\ No newline at end of file
+}
diff --git a/integrations/splunk/wazuh-security-events b/integrations/splunk/wazuh-security-events
index 7d5d033ab0bec..c64fa191bed88 100644
--- a/integrations/splunk/wazuh-security-events
+++ b/integrations/splunk/wazuh-security-events
@@ -203,11 +203,7 @@
       "type": "input.timerange",
       "options": {
         "token": "global_time",
-        "defaultValue": "-60m@m,now",
-        "queryParameters": {
-          "latest": "$global_time.latest$",
-          "earliest": "$global_time.earliest$"
-        }
+        "defaultValue": "-60m@m,now"
       },
       "title": "Global Time Range"
     }
@@ -293,4 +289,4 @@
   },
   "description": "",
   "title": "wazuh-security-events-v1.0"
-}
\ No newline at end of file
+}
diff --git a/integrations/splunk/wazuh-vulnerabilities b/integrations/splunk/wazuh-vulnerabilities
index 56174696e2673..a46023455e789 100644
--- a/integrations/splunk/wazuh-vulnerabilities
+++ b/integrations/splunk/wazuh-vulnerabilities
@@ -178,11 +178,7 @@
       "type": "input.timerange",
       "options": {
         "token": "global_time",
-        "defaultValue": "-60m@m,now",
-        "queryParameters": {
-          "latest": "$global_time.latest$",
-          "earliest": "$global_time.earliest$"
-        }
+        "defaultValue": "-60m@m,now"
       },
       "title": "Global Time Range"
     }