Bumped version to 0.1.3.post1

Updated constant enumerations at Sat Nov  4 10:16:09 UTC 2023. The following files
have been changed: zlogging/enum/__init__.py zlogging/enum/log.py zlogging/enum/notice.py

conda/build

@@ -1 +1 @@
-13
+0

zlogging/__init__.py

@@ -32,4 +32,4 @@
 ]
 
 # version string
-__version__ = '0.1.3'
+__version__ = '0.1.3.post1'

zlogging/enum/__init__.py

@@ -379,6 +379,11 @@
     'ModbusDeviceType': Known_ModbusDeviceType,
 }
 
+builtins.globals()['ZLogging::LDAP'] = {
+    'LDAP_LDAP_LOG': Log_ID.LDAP_LDAP_LOG,
+    'LDAP_LDAP_SEARCH_LOG': Log_ID.LDAP_LDAP_SEARCH_LOG,
+}
+
 builtins.globals()['ZLogging::LoadBalancing'] = {
     'AUTO_BPF': LoadBalancing_Method.AUTO_BPF,
     'Method': LoadBalancing_Method,
@@ -695,6 +700,10 @@
     'dir': ProtocolDetector_dir,
 }
 
+builtins.globals()['ZLogging::QUIC'] = {
+    'QUIC_LOG': Log_ID.QUIC_LOG,
+}
+
 builtins.globals()['ZLogging::RADIUS'] = {
     'RADIUS_LOG': Log_ID.RADIUS_LOG,
 }
@@ -803,11 +812,6 @@
     'SctSource': SSL_SctSource,
 }
 
-builtins.globals()['ZLogging::Scan'] = {
-    'Scan_Address_Scan': Notice_Type.Scan_Address_Scan,
-    'Scan_Port_Scan': Notice_Type.Scan_Port_Scan,
-}
-
 builtins.globals()['ZLogging::Signatures'] = {
     'Action': Signatures_Action,
     'SIG_ALARM': Signatures_Action.SIG_ALARM,
@@ -835,6 +839,10 @@
     'UNKNOWN': Software_Type.UNKNOWN,
 }
 
+builtins.globals()['ZLogging::Spicy'] = {
+    'Spicy_Spicy_Max_File_Depth_Exceeded': Notice_Type.Spicy_Spicy_Max_File_Depth_Exceeded,
+}
+
 builtins.globals()['ZLogging::Stats'] = {
     'Stats_LOG': Log_ID.Stats_LOG,
 }

zlogging/enum/log.py

@@ -154,6 +154,14 @@ class ID(enum.IntFlag):
     #: (present if base/protocols/krb/main.zeek is loaded)
     KRB_LOG = enum.auto()
 
+    #: LDAP::LDAP_LOG
+    #: (present if base/protocols/ldap/main.zeek is loaded)
+    LDAP_LDAP_LOG = enum.auto()
+
+    #: LDAP::LDAP_SEARCH_LOG
+    #: (present if base/protocols/ldap/main.zeek is loaded)
+    LDAP_LDAP_SEARCH_LOG = enum.auto()
+
     #: Modbus::LOG
     #: (present if base/protocols/modbus/main.zeek is loaded)
     Modbus_LOG = enum.auto()
@@ -182,6 +190,10 @@ class ID(enum.IntFlag):
     #: (present if base/protocols/ntp/main.zeek is loaded)
     NTP_LOG = enum.auto()
 
+    #: QUIC::LOG
+    #: (present if base/protocols/quic/main.zeek is loaded)
+    QUIC_LOG = enum.auto()
+
     #: RADIUS::LOG
     #: (present if base/protocols/radius/main.zeek is loaded)
     RADIUS_LOG = enum.auto()

zlogging/enum/notice.py

@@ -143,6 +143,10 @@ class Type(enum.IntFlag):
     #: Indicates packets were dropped by the packet filter.
     PacketFilter_Dropped_Packets = enum.auto()
 
+    #: Spicy::Spicy_Max_File_Depth_Exceeded
+    #: (present if base/frameworks/spicy/main.zeek is loaded)
+    Spicy_Spicy_Max_File_Depth_Exceeded = enum.auto()
+
     #: ProtocolDetector::Protocol_Found
     #: (present if policy/frameworks/dpd/detect-protocols.zeek is loaded)
     ProtocolDetector_Protocol_Found = enum.auto()
@@ -208,25 +212,6 @@ class Type(enum.IntFlag):
     #: traceroute.log.
     Traceroute_Detected = enum.auto()
 
-    #: Scan::Address_Scan
-    #: (present if policy/misc/scan.zeek is loaded)
-    #: Address scans detect that a host appears to be scanning some
-    #: number of destinations on a single port. This notice is
-    #: generated when more than Scan::addr\_scan\_threshold
-    #: unique hosts are seen over the previous
-    #: Scan::addr\_scan\_interval time range.
-    Scan_Address_Scan = enum.auto()
-
-    #: Scan::Port_Scan
-    #: (present if policy/misc/scan.zeek is loaded)
-    #: Port scans detect that an attacking host appears to be
-    #: scanning a single victim host on several ports.  This notice
-    #: is generated when an attacking host attempts to connect to
-    #: Scan::port\_scan\_threshold
-    #: unique ports on a single host over the previous
-    #: Scan::port\_scan\_interval time range.
-    Scan_Port_Scan = enum.auto()
-
     #: Conn::Retransmission_Inconsistency
     #: (present if policy/protocols/conn/weirds.zeek is loaded)
     #: Possible evasion; usually just chud.