![]() We'll probably open-source our Go client library at some point, but we want to clean it up a little first and make things more idiomatic in places. ![]() Gravwell has a REST API, so you could also interface with it that way. Unlike Splunk, you don't have to massage every data source into a key-value sort of text format we'll just take binary if you like, we don't care. We've open-sourced the library that lets you ingest data, so you could pretty quickly ingest anything you want. You can also run scripts within the pipeline, which we frequently do when existing search modules don't quite meet our needs. Of course, scripts can be complex to write, so we're exploring options for simpler flowchart-like scripting within the GUI too. Check out our other blog post for an example script that runs a search on disk stats entries from collectd, checks if any machine is running out of disk space, and emails someone if there's a problem. These scripts can be run on a schedule, or you can run them by hand using the CLI client. More powerfully, you can write scripts to run searches. You can schedule searches to run at certain times (specified with a cron spec, currently) so you could have search results ready first-thing every morning. You can run searches in the web GUI, or in the CLI client. ![]() It helps that we haven't been around long enough to build up too much cruft! ![]() I'll offer up first the caveat that Gravwell is a pretty new product, but we've definitely been building with an eye to extensibility. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
March 2023
Categories |