Elastic Common Schema (ECS)
The Elastic Common Schema (ECS) defines a common set of fields for
ingesting data into Elasticsearch. A common schema helps you correlate
data from sources like logs and metrics or IT operations
analytics and security analytics.
Documentation
The ECS reference is published on the main Elastic documentation website.
Visit the official ECS Reference Documentation.
Contributing
If you're looking to contribute to ECS, you're invited to look at our
contribution guide
Generated artifacts
Various kinds of files or programs can be generated based on ECS.
You can learn more in generated/README.md
Releases of ECS
The master branch of this repository should never be considered an
official release of ECS. You can browse official releases of ECS
here.
The ECS team publishes improvements to the schema by following
Semantic Versioning.
Generally major ECS releases are planned to be aligned with major Elastic Stack releases.