{
  "package": {
    "name": "log",
    "version": ""
  },
  "name": "suricata-logs",
  "namespace": "so",
  "description": "Suricata integration",
  "policy_id": "so-grid-nodes_general",
  "inputs": {
    "logs-logfile": {
      "enabled": true,
      "streams": {
        "log.logs": {
          "enabled": true,
          "vars": {
            "paths": [
              "/nsm/suricata/eve*.json"
            ],
            "data_stream.dataset": "suricata",
            "tags": [],
            "processors": "- add_fields:\n    target: event\n    fields:\n      category: network\n      module: suricata",
            "custom": "pipeline: suricata.common"
          }
        }
      }
    }
  }
}