Research
PyPI Package Disguised as Instagram Growth Tool Harvests User Credentials
A deceptive PyPI package posing as an Instagram growth tool collects user credentials and sends them to third-party bot services.
By Kush Pandya - Jun 06, 2025
🚀 Big News: Socket Acquires Coana to Bring Reachability Analysis to Every Appsec Team.Learn more →
github.com/SumoLogic/opentelemetry-collector-contrib/receiver/elasticsearchreceiver
github.com/SumoLogic/opentelemetry-collector-contrib/receiver/elasticsearchreceiver
- Version published
- Created
Elasticsearch Receiver
This receiver queries the Elasticsearch node stats and cluster health endpoints in order to scrape metrics from a running elasticsearch cluster.
Supported pipeline types: metrics
:construction: This receiver is in BETA. Configuration fields and metric data model are subject to change.
Prerequisites
This receiver supports Elasticsearch versions 7.9+
If Elasticsearch security features are enabled, you must have either the monitor or manage cluster privilege.
See the Elasticsearch docs for more information on authorization and Security privileges.
Configuration
The following settings are optional:
metrics(default: seeDefaultMetricsSettingshere: Allows enabling and disabling specific metrics from being collected in this receiver.nodes(default:["_all"]): Allows specifying node filters that define which nodes are scraped for node-level metrics. See the Elasticsearch documentation for allowed filters. If this option is left explicitly empty, then no node-level metrics will be scraped.skip_cluster_metrics(default:false): If true, cluster-level metrics will not be scraped.endpoint(default =http://localhost:9200): The base URL of the Elasticsearch API for the cluster to monitor.username(no default): Specifies the username used to authenticate with Elasticsearch using basic auth. Must be specified if password is specified.password(no default): Specifies the password used to authenticate with Elasticsearch using basic auth. Must be specified if username is specified.collection_interval(default =10s): This receiver collects metrics on an interval. This value must be a string readable by Golang's time.ParseDuration. On larger clusters, the interval may need to be lengthened, as querying Elasticsearch for metrics will take longer on clusters with more nodes.
Example Configuration
receivers:
elasticsearch:
metrics:
elasticsearch.node.fs.disk.available:
enabled: false
nodes: ["_local"]
skip_cluster_metrics: true
endpoint: http://localhost:9200
username: otel
password: password
collection_interval: 10s
The full list of settings exposed for this receiver are documented here with detailed sample configurations here.
Metrics
Details about the metrics produced by this receiver can be found in metadata.yaml
FAQs
Unknown package
Package last updated on 08 Nov 2022
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Related posts
Product
Socket Now Supports pylock.toml Files
Socket now supports pylock.toml, enabling secure, reproducible Python builds with advanced scanning and full alignment with PEP 751's new standard.
By Trevor Norris - Jun 05, 2025
Security News
Research
Destructive npm Packages Disguised as Utilities Enable Remote System Wipe
Socket uncovered two npm packages that register hidden HTTP endpoints to delete all files on command.
By Kush Pandya - Jun 05, 2025