Fixed JSON parsing issue for DNS answers containing backslashes by adding proper escape handling

Added test cases for DNS TYPE65 queries with complex data structures

Updated parser version to 3.0.2

Fixed DNS answers type field mapping to use proper array notation (dns.answers[0].type instead of dns.answers.type)

Updated parser version to 3.0.1

Enhanced DHCP parsing with support for BOOTREPLY, BOOTREQUEST, ICMP, and NOT FREE events

Added support for password_expired and logout authentication events in audit logs

Improved field mapping with client.address and server.address normalization

Added transaction.id field mapping for DHCP events

Enhanced DNS parsing with timeout resolution support

Updated parser version to 3.0.0

Enhanced DNS query parsing to support view-specific queries with improved regex pattern

Added support for extracting view information from DNS messages

Fixed network transport protocol normalization to lowercase format

Updated parser version to 2.2.5

Updated ECS version to 9.2.0

Fixed DNS answers type field mapping to use array notation (dns.answers[0].type)

Updated parser version to 2.2.4

Removed timezone parameter from parseTimestamp functions to use system default timezone

Updated parser version to 2.2.3

Fixed DNS client IP extraction regex to improve parsing accuracy

Enhanced DNS message handling with proper @ symbol replacement

Updated ECS version to 9.1.0 and CPS version to 1.1.0

Fixed an issue with DNS answers containing quotes

Improves event categorization.

Adds support for additional audit events

Enhances DNS field extraction

The old parser syslog-utc is now officially removed from the Infoblox Nios package

Improves the dns.* fields extraction.

Bumps the ecs.version to 8.16.0

Enhacnes the regex to accept hashes in the host.domain field.

Adds event.kind field mapped to CPS

Deprecation notice:

It extends the support of syslog format.

Adds following fields mapped to CPS: dns.question.name, dns.question.class, client.domain, client.ip amd server.ip.

Improves event categorization and outcomes via the event.category[] and event.type[] arrays and the event.outcome field.

Simplifies parser logic by removing unnecessary rename operations.

Bumps the minimum LogScale version to 1.142 to support assertions in yaml files.

Extracts the dns.answer.* and dns.resolved_ip fields.

Removes the repeat.message field.

Adds new event.module, event.dataset and Cps.version fields

Removes the Product, related.host and related.ip fields

Sets following tags: Cps.version, Vendor, ecs.version, event.dataset, event.kind, event.module, event.outcome, observer.type