{"id":20783608,"url":"https://github.com/jedi4ever/logstash-cli","last_synced_at":"2025-05-01T02:35:26.227Z","repository":{"id":3257024,"uuid":"4295283","full_name":"jedi4ever/logstash-cli","owner":"jedi4ever","description":"Commandline interface for logstash","archived":false,"fork":false,"pushed_at":"2013-05-29T06:54:32.000Z","size":229,"stargazers_count":71,"open_issues_count":8,"forks_count":9,"subscribers_count":8,"default_branch":"master","last_synced_at":"2025-04-23T06:49:41.999Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Ruby","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/jedi4ever.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2012-05-11T09:26:18.000Z","updated_at":"2024-01-03T14:10:08.000Z","dependencies_parsed_at":"2022-08-21T00:20:08.119Z","dependency_job_id":null,"html_url":"https://github.com/jedi4ever/logstash-cli","commit_stats":null,"previous_names":[],"tags_count":8,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jedi4ever%2Flogstash-cli","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jedi4ever%2Flogstash-cli/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jedi4ever%2Flogstash-cli/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/jedi4ever%2Flogstash-cli/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/jedi4ever","download_url":"https://codeload.github.com/jedi4ever/logstash-cli/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251812877,"owners_count":21647984,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-17T14:21:39.305Z","updated_at":"2025-05-01T02:35:26.198Z","avatar_url":"https://github.com/jedi4ever.png","language":"Ruby","funding_links":[],"categories":[],"sub_categories":[],"readme":"** Work in progress **\n\n## Description\n\nA cli tool to query an elasticsearch host for logstash information.\nBecause let's face it, we're CLI junkies :)\n\nMucho inspired by a gist of the eminent @lusis - \u003chttps://gist.github.com/1388077\u003e\n\n## Installation\n### As a gem\n\n $ gem install logstash-cli\n\n### From github\n\n Tested with rvm and ruby-1.8.7\n\n $ git clone git://github.com/jedi4ever/logstash-cli.git\n $ cd logstash-cli\n $ gem install bundler\n $ bundle install\n\n## Usage\n\n### Using the Gem\n\n # If you no rvm\n $ bundle exec bin/logstash-cli\n\n # If you have rvm , there is an alias in .rvmrc\n $ logstash-cli\n\n### Using the Github version - through bundler\n\n $ bundle exec bin/logstash-cli \n\n## Commandline Options\n\n### Grep\n\n Usage:\n logstash-cli grep PATTERN\n\n Options:\n [--index-prefix=INDEX_PREFIX] # Logstash index prefix\n # Default: logstash-\n [--fields=FIELDS] # Logstash Fields to show\n # Default: message,program\n [--meta=META] # Meta Logstash fields to show\n # Default: type,message\n [--to=TO] # End date\n # Default: Today in YYYY-MM-DD HH:MM:SS form (the time is optional)\n [--delim=DELIM] # plain or csv delimiter\n # Default: |\n [--format=FORMAT] # Format to use for exporting\n # Default: csv\n [--from=FROM] # Begin date\n # Default: Today in YYYY-MM-DD HH:MM:SS form (the time is optional)\n [--size=SIZE] # Number of results to return\n # Default: 500\n [--esurl=ESURL] # URL to connect to elasticsearch\n # Default: http://localhost:9200\n [--last=LAST] # Specify period since now (Examples: 10min, 3hrs, 4days, 1wk, 1yr)\n\n Search logstash for a pattern\n\n### Tail\n\n Usage:\n logstash-cli tail\n\n Options:\n [--host=HOST] # Host to connect to AMQP\n # Default: localhost\n --amqpurl, [--url=URL] # Alternate way to specify settings via an AMQP Url f.i. amqp://logstash:foopass@localhost:5672. \n This takes precendence over other settings. Note that username and password need to be percentage encoded(URL encoded) in case of special characters\n [--auto-delete] # Autodelete Exchange or not\n [--vhost=VHOST] # VHost to connect to AMQP\n # Default: /\n [--persistent] # Persistent Exchange or not\n [--ssl] # Enable SSL to connect to AMQP\n [--user=USER] # User to connect to AMQP\n # Default: logstash\n [--meta=META] # Meta Logstash fields to show\n # Default: timestamp,type,message\n [--format=FORMAT] # Format to use for exporting (plain,csv,json)\n # Default: csv\n [--key=KEY] # Routing key\n # Default: #\n [--port=PORT] # Port to connect to AMQP\n # Default: 5672\n [--exchange=EXCHANGE] # Exchange name\n # Default: rawlogs\n [--password=PASSWORD] # Password to connect to AMQP\n # Default: foo\n [--delim=DELIM] # plain or csv delimiter\n # Default: |\n [--exchange-type=EXCHANGE_TYPE] # Exchange Type\n # Default: direct\n [--durable] # Durable Exchange or not\n\n Stream a live feed via AMQP\n\n### Count\n\n Usage:\n logstash-cli count PATTERN --countfield=COUNTFIELD\n\n Options:\n [--meta=META] # Meta Logstash fields to show\n [--last=LAST] # Specify period since now f.i. 1d\n [--from=FROM] # Begin date\n # Default: Today in YYYY-MM-DD form\n [--delim=DELIM] # plain or csv delimiter\n # Default: |\n --countfield=COUNTFIELD # Logstash field to count\n [--countsize=COUNTSIZE] # Number of most frequent values to return\n # Default: 50\n [--format=FORMAT] # Format to use for exporting (plain,csv,json)\n # Default: csv\n [--to=TO] # End date\n # Default: Today in YYYY-MM-DD form\n [--fields=FIELDS] # Logstash fields to show\n [--size=SIZE] # Number of results per index to show\n # Default: 10\n [--esurl=ESURL] # URL to connect to elasticsearch\n # Default: http://localhost:9200\n [--index-prefix=INDEX_PREFIX] # Logstash index prefix\n # Default: logstash-\n\n Return most frequent values of a field within a pattern and optionally show associated fields\n\n## Examples\n\n $ logstash-cli grep --esurl=\"http://logger-1.jedi.be:9200\" '@message:jedi4ever AND program:sshd' --last 5d --format csv --delim ':'\n\n $ logstash-cli tail --amqpurl=\"amqp://logger-1.jedi.be:5672\" --key=\"program.sshd\"\n\n $ logstash-cli count --esurl=\"http://logger-1.jedi.be:9200\" '@message:jedi4ever' --countfield=program\n\n## TODO\n\n- find a way to query existing instances\n- find a way to get the results by streaming instead of loading all in memory (maybe pagination will help here)\n- produce ascii histograms\n- or sparklines\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjedi4ever%2Flogstash-cli","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fjedi4ever%2Flogstash-cli","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fjedi4ever%2Flogstash-cli/lists"}