1pub mod egress;
46pub mod engine;
47pub mod enrichment;
48pub mod error;
49pub mod input;
50pub mod io;
51pub mod metrics;
52pub mod parse;
53pub mod pipeline_deprecation;
54pub mod processor;
55pub mod sources;
56pub mod tap;
57
58pub use egress::{
59 EgressDenial, EgressFilteredResolver, EgressPolicy, default_egress_policy,
60 set_default_egress_policy,
61};
62pub use engine::{EngineStats, RuntimeEngine};
63pub use enrichment::config::{
64 EnricherConfig, EnrichersConfigError, EnrichersFile, build_enrichers, build_enrichers_full,
65 load_enrichers_file,
66};
67pub use enrichment::{
68 CacheKey, CacheOutcome, CommandEnricher, EnrichError, EnrichErrorKind, Enricher,
69 EnricherFactory, EnricherKind, EnrichmentPipeline, HttpEnricher, HttpEnricherClient,
70 HttpResponseCache, LookupEnricher, OnError, OutputFormat, Scope, TemplateEnricher,
71 TemplateError, build_default_http_client, lookup_builtin, register_builtin,
72 validate_template_namespace,
73};
74pub use error::RuntimeError;
75pub use input::{EventInputDecoded, InputFormat, parse_line};
76pub use io::webhook::{
77 BuiltWebhook, WebhookConfig, WebhookConfigError, WebhookKind, WebhookSink, WebhooksFile,
78 build_webhooks, load_webhooks_file,
79};
80pub use io::{
81 AckToken, DeliveryConfig, DeliveryFailure, DeliverySink, Dispatcher, EventSource, FileSink,
82 OnFull, RawEvent, Sink, StdinSource, StdoutSink, spawn_source,
83};
84pub use metrics::{MetricsHook, NoopMetrics};
85pub use pipeline_deprecation::warn_pipeline_inline_sources;
86pub use processor::{EventFilter, LogProcessor};
87pub use tap::{TapPayload, TapRegistry, TapSessionHandle, TapStage};
88
89pub use rsigma_eval::{
90 FieldCoverage, FieldObservation, FieldObservationEntry, FieldObserver, ProcessResult,
91 ProcessResultExt,
92};
93pub use sources::refresh::{RefreshResult, RefreshScheduler, RefreshTrigger};
94pub use sources::{
95 DefaultSourceResolver, ResolvedValue, SourceCache, SourceError, SourceErrorKind,
96 SourceResolver, TemplateExpander,
97};
98
99#[cfg(feature = "nats")]
100pub use io::{NatsConnectConfig, NatsSink, NatsSource, ReplayPolicy};
101
102#[cfg(feature = "evtx")]
103pub use input::evtx::{EvtxError, EvtxFileReader};
104
105#[cfg(feature = "otlp")]
106pub use io::otlp::{
107 ExportLogsServiceRequest, ExportLogsServiceResponse, LogsService, LogsServiceServer,
108 OtlpClientTls, OtlpProtocol, OtlpSink, evaluation_results_to_logs_request,
109 logs_request_to_raw_events,
110};