Documentation
¶
Index ¶
- func FilterMessage(hits []opensearchapi.SearchHit) (msgList []string)
- type Helper
- func (h *Helper) GetMsg() (messageList []string, err error)
- func (h *Helper) GetTrend(interval, termField string) (trendList TrendSeries, err error)
- func (h *Helper) Index(index string) *Helper
- func (h *Helper) Query(query osquery.Mappable) *Helper
- func (h *Helper) Size(size uint64) *Helper
- func (h *Helper) Sort(name string, order osquery.Order) *Helper
- func (h *Helper) Source(source ...string) *Helper
- type TrendAggData
- type TrendItem
- type TrendSeries
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func FilterMessage ¶
func FilterMessage(hits []opensearchapi.SearchHit) (msgList []string)
Types ¶
type Helper ¶
Helper to be filled
@author kevinmatthe @update 2025-04-30 13:10:06
func (*Helper) GetTrend ¶
func (h *Helper) GetTrend(interval, termField string) (trendList TrendSeries, err error)
func (*Helper) Index ¶
Index to be filled
@receiver h *Helper @param index string @return *Helper @author kevinmatthe @update 2025-04-30 13:11:28
func (*Helper) Query ¶
Query to be filled
@receiver h *HistoryHelper @param query osquery.Mappable @return *HistoryHelper @author kevinmatthe @update 2025-04-30 13:09:55
func (*Helper) Size ¶
Size to be filled
@receiver h *Helper @param size uint64 @return *Helper @author kevinmatthe @update 2025-04-30 13:16:42
type TrendAggData ¶
type TrendAggData struct {
Agg1 struct {
Buckets []struct {
KeyAsString string `json:"key_as_string"`
Key int64 `json:"key"`
DocCount int `json:"doc_count"`
Agg2 struct {
DocCountErrorUpperBound int `json:"doc_count_error_upper_bound"`
SumOtherDocCount int `json:"sum_other_doc_count"`
Buckets []struct {
Key string `json:"key"`
DocCount int `json:"doc_count"`
} `json:"buckets"`
} `json:"agg2"`
} `json:"buckets"`
} `json:"agg1"`
}
type TrendSeries ¶
type TrendSeries []*TrendItem
Source Files
Click to show internal directories.
Click to hide internal directories.