Change log for TRENDMICRO_CLOUDONE

Date	Changes
2025-07-29	Enhancement: -event.idm.read_only_udm.metadata.event_timestamp: Newly mapped LogDate raw log field to event.idm.read_only_udm.metadata.event_timestamp. -event.idm.read_only_udm.security_result.action: Newly mapped Action raw log field to event.idm.read_only_udm.security_result.action. -event.idm.read_only_udm.security_result.action_details: Newly mapped Action raw log field to event.idm.read_only_udm.security_result.action_details. -event.idm.read_only_udm.principal.file.full_path: Newly mapped ProcessName raw log field to event.idm.read_only_udm.principal.file.full_path. -event.idm.read_only_udm.principal.user.windows_sid: Newly mapped UserID raw log field to event.idm.read_only_udm.principal.user.windows_sid. -event.idm.read_only_udm.principal.group.windows_sid: Newly mapped GroupID raw log field to event.idm.read_only_udm.principal.group.windows_sid. -event.idm.read_only_udm.target.process.file.names: Newly mapped FileName raw log field to event.idm.read_only_udm.target.process.file.names. -event.idm.read_only_udm.target.file.size: Newly mapped FileSize raw log field to event.idm.read_only_udm.target.file.size. -event.idm.read_only_udm.target.file.md5: Newly mapped MD5 raw log field to event.idm.read_only_udm.target.file.md5. -event.idm.read_only_udm.target.file.sha256: Newly mapped SHA256 raw log field to event.idm.read_only_udm.target.file.sha256. -event.idm.read_only_udm.target.file.sha1: Newly mapped SHA1 raw log field to event.idm.read_only_udm.target.file.sha1. -event.idm.read_only_udm.target.file.full_path: Newly mapped Path and FileName raw log fields to event.idm.read_only_udm.target.file.full_path. -event.idm.read_only_udm.additional.fields: Newly mapped AggregationType raw log field to event.idm.read_only_udm.additional.fields. -event.idm.read_only_udm.additional.fields: Newly mapped Operation raw log field to event.idm.read_only_udm.additional.fields. -event.idm.read_only_udm.additional.fields: Newly mapped Origin raw log field to event.idm.read_only_udm.additional.fields.
2024-04-29	- Newly created parser.

Date

Changes

2025-07-29

Enhancement:
-event.idm.read_only_udm.metadata.event_timestamp: Newly mapped LogDate raw log field to event.idm.read_only_udm.metadata.event_timestamp.
-event.idm.read_only_udm.security_result.action: Newly mapped Action raw log field to event.idm.read_only_udm.security_result.action.
-event.idm.read_only_udm.security_result.action_details: Newly mapped Action raw log field to event.idm.read_only_udm.security_result.action_details.
-event.idm.read_only_udm.principal.file.full_path: Newly mapped ProcessName raw log field to event.idm.read_only_udm.principal.file.full_path.
-event.idm.read_only_udm.principal.user.windows_sid: Newly mapped UserID raw log field to event.idm.read_only_udm.principal.user.windows_sid.
-event.idm.read_only_udm.principal.group.windows_sid: Newly mapped GroupID raw log field to event.idm.read_only_udm.principal.group.windows_sid.
-event.idm.read_only_udm.target.process.file.names: Newly mapped FileName raw log field to event.idm.read_only_udm.target.process.file.names.
-event.idm.read_only_udm.target.file.size: Newly mapped FileSize raw log field to event.idm.read_only_udm.target.file.size.
-event.idm.read_only_udm.target.file.md5: Newly mapped MD5 raw log field to event.idm.read_only_udm.target.file.md5.
-event.idm.read_only_udm.target.file.sha256: Newly mapped SHA256 raw log field to event.idm.read_only_udm.target.file.sha256.
-event.idm.read_only_udm.target.file.sha1: Newly mapped SHA1 raw log field to event.idm.read_only_udm.target.file.sha1.
-event.idm.read_only_udm.target.file.full_path: Newly mapped Path and FileName raw log fields to event.idm.read_only_udm.target.file.full_path.
-event.idm.read_only_udm.additional.fields: Newly mapped AggregationType raw log field to event.idm.read_only_udm.additional.fields.
-event.idm.read_only_udm.additional.fields: Newly mapped Operation raw log field to event.idm.read_only_udm.additional.fields.
-event.idm.read_only_udm.additional.fields: Newly mapped Origin raw log field to event.idm.read_only_udm.additional.fields.

2024-04-29

- Newly created parser.