Releases

What's new in Logstash 7.13.0

We are happy to announce the general availability of the Logstash 7.13.0 release. This is the latest stable release and is now available for download! Please refer to the release notes for the complete list of features and bug fixes.

Elasticsearch data streams support

The Elastic Stack is commonly used to analyze time series data like logs and metrics. In Elasticsearch 7.9.0, the data streams feature was introduced, offering a cleaner experience for ingesting, searching, and managing time series datasets. With Logstash 7.13.0, we are happy to announce our new data streams integration in the Elasticsearch output plugin.

This integration extends the Elasticsearch output plugin with new settings for enabling and configuring the ability to write to data streams. We align with the Elastic data stream naming scheme, where different data sources are split up into different data streams. This results in a smaller number of fields per index, helping save storage and improve query performance. It also fosters better curated experiences whether you are using Elastic Security, Elastic Observability, or your own custom interfaces. Getting started with writing to data streams is as easy as just turning it on.

output { 
    elasticsearch { 
        hosts => "hostname" 
        data_stream => "true" 
    } 
} 

Data streams is now the recommended approach for ingesting all of your time series datasets into Elasticsearch. We encourage you to try it out and let us know what you think! If you want access to data streams support prior to the Logstash 7.13.0 release, you can simply update the Elasticsearch output plugin to the latest version.

bin/logstash-plugin update logstash-output-elasticsearch 

More ECS-ification

Following the last release, we are continuing down the road towards ECS compliance in Logstash. With this release, we have added an ECS compatibility mode, currently disabled by default, for the plugins below. This will be a recurring theme leading into the next major release.

  • CEF codec (v6.2.0)
  • File input (v4.3.0)
  • Stdin input (v3.3.0)
  • Syslog input (v3.5.0)
  • Clone filter (v4.1.0)
  • GeoIP filter (v7.1.0)
  • Syslog_PRI filter (v3.1.0)
  • TLD filter (v3.1.1)

Try it yourself!

Please download Logstash 7.13.0, try it, and let us know what you think on Twitter (@elastic) or in our forums and community Slack. You can report any bugs or feature requests on the Logstash Github issues page or within the respective plugin repositories.