Splunk metric names should be validated via regex #34275
Assignees
Labels
Comments
|
Pinging code owners:
See Adding Labels via Comments if you do not have permissions to add labels yourself. |
dmitryax
added a commit
that referenced
this issue
Jul 30, 2024
…34291) **Description:** For the splunk HEC receiver, add additional criteria for the metric names. As per https://docs.splunk.com/Documentation/Splunk/9.2.1/Metrics/Overview#What_is_a_metric_data_point.3F, metric names can only consist of specific characters. Validates these requirements to be in line with other Splunk receivers. **Link to tracking Issue:** [#34275](#34275) --------- Co-authored-by: Dmitrii Anoshin <anoshindx@gmail.com>
|
Hello @spiffyy99, thanks for filing! Since #34291 has been merged, can we close this issue? |
|
yes, i'll close it now. thanks for the review. |
|
Thanks for resolving, really appreciate the help! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Component(s)
internal/splunk
Describe the issue you're reporting
Currently, while parsing splunk metric fields from events (starting with
metric_name), no validation is done to ensure the metric names actually fit with Splunk criteria. According to the Splunk documentation, metric names have the following restriction:It follows that field names that don't follow this convention should be designated as dimensions rather than metric datapoints.
The text was updated successfully, but these errors were encountered: