Suricata-Verify: Add JSON schema validation to EVE output.
Add a feature, or command that validates all eve.json through a JSON schema. This doesn't have to become part of each test, but is something that could be run after a full run of suricata-verify over all found eve.json files.
Something like this would have caught "fileinfo" being an array in alerts, while an object in "fileinfo" records by having a schema requiring that .fileinfo was an object.
Updated by Shivani Bhardwaj over 2 years ago
- Assignee set to Community Ticket
- Target version set to QA
Updated by Jason Ish over 2 years ago
- Related to Feature #1369: eve: json schema added
Updated by Philippe Antoine 8 months ago
- Status changed from New to Closed