Adding custom agent.host custom field definitions to remaining indices

ecs/alerts/fields/custom/agent.yml

@@ -9,4 +9,30 @@
       type: keyword
       level: custom
       description: >
-        The groups the agent belongs to.
+        List of groups the agent belong to.
+    - name: key
+      type: keyword
+      level: custom
+      description: >
+        The registration key of the agent.
+    - name: last_login
+      type: date
+      level: custom
+      description: >
+<<<<<<< HEAD:ecs/agent/fields/custom/wazuh-agent.yml
+        The agent's last login.
+    - name: status
+      type: keyword
+=======
+        The last time the agent logged in.
+    - name: is_connected
+      type: boolean
+>>>>>>> master:ecs/agent/fields/custom/agent.yml
+      level: custom
+      description: >
+        Agents' interpreted connection status depending on `agent.last_login`.
+      allowed_values:
+        - name: active
+          description: Active agent status
+        - name: disconnected
+          description: Disconnected agent status

ecs/alerts/fields/custom/host.yml

@@ -0,0 +1,6 @@
+---
+- name: host
+  reusable:
+    top_level: false
+    expected:
+      - agent

ecs/alerts/fields/custom/os.yml

@@ -0,0 +1,6 @@
+---
+- name: os
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/alerts/fields/custom/risk.yml

@@ -0,0 +1,6 @@
+---
+- name: risk
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-fim/fields/custom/host.yml

@@ -0,0 +1,6 @@
+---
+- name: host
+  reusable:
+    top_level: false
+    expected:
+      - agent

ecs/states-fim/fields/custom/os.yml

@@ -0,0 +1,6 @@
+---
+- name: os
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-fim/fields/custom/risk.yml

@@ -0,0 +1,6 @@
+---
+- name: risk
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-hardware/fields/custom/agent.yml

@@ -3,9 +3,36 @@
   title: Wazuh Agents
   short: Wazuh Inc. custom fields.
   type: group
+  group: 2
   fields:
     - name: groups
       type: keyword
       level: custom
       description: >
         List of groups the agent belong to.
+    - name: key
+      type: keyword
+      level: custom
+      description: >
+        The registration key of the agent.
+    - name: last_login
+      type: date
+      level: custom
+      description: >
+<<<<<<< HEAD:ecs/agent/fields/custom/wazuh-agent.yml
+        The agent's last login.
+    - name: status
+      type: keyword
+=======
+        The last time the agent logged in.
+    - name: is_connected
+      type: boolean
+>>>>>>> master:ecs/agent/fields/custom/agent.yml
+      level: custom
+      description: >
+        Agents' interpreted connection status depending on `agent.last_login`.
+      allowed_values:
+        - name: active
+          description: Active agent status
+        - name: disconnected
+          description: Disconnected agent status

ecs/states-inventory-hardware/fields/custom/host.yml

@@ -1,52 +1,6 @@
 ---
 - name: host
-  title: host
-  type: group
-  description: >
-    Host related data.
-  fields:
-    - name: memory
-      description: >
-        Memory related data
-      type: object
-      level: custom
-    - name: memory.total
-      description: >
-        Total memory in MB
-      type: long
-      level: custom
-    - name: memory.free
-      description: >
-        Free memory in MB
-      type: long
-      level: custom
-    - name: memory.used
-      description: >
-        Used memory related data
-      type: object
-      level: custom
-    - name: memory.used.percentage
-      description: >
-        Used memory percentage
-      type: long
-      level: custom
-    - name: cpu
-      description: >
-        CPU related data
-      type: object
-      level: custom
-    - name: cpu.name
-      description: >
-        CPU Model name
-      type: keyword
-      level: custom
-    - name: cpu.cores
-      description: >
-        Number of CPU cores
-      type: long
-      level: custom
-    - name: cpu.speed
-      description: >
-        CPU clock speed
-      type: long
-      level: custom
+  reusable:
+    top_level: false
+    expected:
+      - agent

ecs/states-inventory-hardware/fields/custom/os.yml

@@ -0,0 +1,6 @@
+---
+- name: os
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-hardware/fields/custom/risk.yml

@@ -0,0 +1,6 @@
+---
+- name: risk
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-hotfixes/fields/custom/agent.yml

@@ -3,9 +3,36 @@
   title: Wazuh Agents
   short: Wazuh Inc. custom fields.
   type: group
+  group: 2
   fields:
     - name: groups
       type: keyword
       level: custom
       description: >
         List of groups the agent belong to.
+    - name: key
+      type: keyword
+      level: custom
+      description: >
+        The registration key of the agent.
+    - name: last_login
+      type: date
+      level: custom
+      description: >
+<<<<<<< HEAD:ecs/agent/fields/custom/wazuh-agent.yml
+        The agent's last login.
+    - name: status
+      type: keyword
+=======
+        The last time the agent logged in.
+    - name: is_connected
+      type: boolean
+>>>>>>> master:ecs/agent/fields/custom/agent.yml
+      level: custom
+      description: >
+        Agents' interpreted connection status depending on `agent.last_login`.
+      allowed_values:
+        - name: active
+          description: Active agent status
+        - name: disconnected
+          description: Disconnected agent status

ecs/states-inventory-hotfixes/fields/custom/host.yml

@@ -0,0 +1,6 @@
+---
+- name: host
+  reusable:
+    top_level: false
+    expected:
+      - agent

ecs/states-inventory-hotfixes/fields/custom/os.yml

@@ -0,0 +1,6 @@
+---
+- name: os
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-hotfixes/fields/custom/risk.yml

@@ -0,0 +1,6 @@
+---
+- name: risk
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-networks/fields/custom/agent.yml

@@ -3,9 +3,36 @@
   title: Wazuh Agents
   short: Wazuh Inc. custom fields.
   type: group
+  group: 2
   fields:
     - name: groups
       type: keyword
       level: custom
       description: >
         List of groups the agent belong to.
+    - name: key
+      type: keyword
+      level: custom
+      description: >
+        The registration key of the agent.
+    - name: last_login
+      type: date
+      level: custom
+      description: >
+<<<<<<< HEAD:ecs/agent/fields/custom/wazuh-agent.yml
+        The agent's last login.
+    - name: status
+      type: keyword
+=======
+        The last time the agent logged in.
+    - name: is_connected
+      type: boolean
+>>>>>>> master:ecs/agent/fields/custom/agent.yml
+      level: custom
+      description: >
+        Agents' interpreted connection status depending on `agent.last_login`.
+      allowed_values:
+        - name: active
+          description: Active agent status
+        - name: disconnected
+          description: Disconnected agent status

ecs/states-inventory-networks/fields/custom/host.yml

@@ -1,24 +1,6 @@
 ---
 - name: host
-  title: Host
-  fields:
-  - name: network.egress.drops
-    type: long
-    level: custom
-    description: >
-      Number of dropped transmitted packets.
-  - name: network.egress.errors
-    type: long
-    level: custom
-    description: >
-      Number of transmission errors.
-  - name: network.ingress.drops
-    type: long
-    level: custom
-    description: >
-      Number of dropped received packets.
-  - name: network.ingress.errors
-    type: long
-    level: custom
-    description: >
-      Number of reception errors.
+  reusable:
+    top_level: false
+    expected:
+      - agent

ecs/states-inventory-networks/fields/custom/os.yml

@@ -0,0 +1,6 @@
+---
+- name: os
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-networks/fields/custom/risk.yml

@@ -0,0 +1,6 @@
+---
+- name: risk
+  reusable:
+    top_level: false
+    expected:
+      - agent.host

ecs/states-inventory-packages/fields/custom/agent.yml

@@ -3,9 +3,36 @@
   title: Wazuh Agents
   short: Wazuh Inc. custom fields.
   type: group
+  group: 2
   fields:
     - name: groups
       type: keyword
       level: custom
       description: >
         List of groups the agent belong to.
+    - name: key
+      type: keyword
+      level: custom
+      description: >
+        The registration key of the agent.
+    - name: last_login
+      type: date
+      level: custom
+      description: >
+<<<<<<< HEAD:ecs/agent/fields/custom/wazuh-agent.yml
+        The agent's last login.
+    - name: status
+      type: keyword
+=======
+        The last time the agent logged in.
+    - name: is_connected
+      type: boolean
+>>>>>>> master:ecs/agent/fields/custom/agent.yml
+      level: custom
+      description: >
+        Agents' interpreted connection status depending on `agent.last_login`.
+      allowed_values:
+        - name: active
+          description: Active agent status
+        - name: disconnected
+          description: Disconnected agent status

ecs/states-inventory-packages/fields/custom/host.yml

@@ -0,0 +1,6 @@
+---
+- name: host
+  reusable:
+    top_level: false
+    expected:
+      - agent

ecs/states-inventory-packages/fields/custom/os.yml

@@ -0,0 +1,6 @@
+---
+- name: os
+  reusable:
+    top_level: false
+    expected:
+      - agent.host