Update macros.conf

derkkila · derkkila · commit b9f76e389498 · 2022-11-30T15:51:19.000-05:00
Added missing macros
diff --git a/github_app_for_splunk/default/macros.conf b/github_app_for_splunk/default/macros.conf
@@ -3,8 +3,12 @@
 definition = index=github_collectd
 iseval = 0
 
+[github_json]
+definition = index="github" sourcetype=github_json
+iseval = 0
+
 [github_source]
-definition = (index="github" source="ghe_audit_log_monitoring://*") OR (index=ghes source=github_audit) OR (index=gitops source="github:enterprise:audit") OR (index=gh_audit_stream)
+definition = index="github"
 iseval = 0
 
 [github_webhooks]
@@ -16,7 +20,7 @@ definition = index="github_workflow_logs"
 iseval = 0
 
 [devops_indexes]
-definition = index="github_webhook" OR index="github_webhook2"
+definition = index="github_webhook" OR index="github_webhook2" OR index="github"
 iseval = 0
 
 [individual_commits]
