Hello,
we’ve been looking at exposing a higher-level script framework for the the existing lower-level Telemetry
bifs to make it easier for Zeek script writers to expose their own metrics.To that end, there’s a proposal doc available as Google doc: Zeek Script Telemetry Module - Google Docs
A work-in-progress implementation representing this proposal can be found in a branch of the main Zeek repository. This file currently contains usage examples as well. These may be easier to read through than the API or implementation
We’re looking for feedback (as comment on the doc or here) whether this goes into a direction that people would be happy to see and use.
Thanks!
[This is a repost of a message from the development channel on Slack]