graylog2-server icon indicating copy to clipboard operation
graylog2-server copied to clipboard
verified publisher icon Graylog2

Include pipeline rule content/source matches when searching on `Pipeline Rules`

Open coffee-squirrel opened this issue 1 year ago • 1 comments

What?

Searching on the Pipeline Rules page (i.e. /system/pipelines/rules) should include matches on pipeline rules' content/source.

Why?

This would make it easier to:

  • identify use of certain functions (for reference when developing new rules, finding deprecated functions [e.g. remove_field in #19287], etc.)
  • find other useful content (e.g. TODOs, system identifiers, IPs / CIDR ranges, etc.)

The current approach I use is to dump all pipeline rules via the API and search that content, but that's a bit tedious (and without parsing the JSON the content has \", \n, etc. all over the place).

Your Environment

  • Graylog Version: 6.1.5

coffee-squirrel avatar Jan 22 '25 17:01 coffee-squirrel

Here's another vote from the forums for better rule searching / management capabilities: https://community.graylog.org/t/finding-deprecated-funtions-in-pipeline-rules/35811/2?u=patrickmann

patrickmann avatar Jun 10 '25 09:06 patrickmann