Add missing tag, formatting

Author: taylor-swanson

packages/cisco_secure_email_gateway/data_stream/log/elasticsearch/ingest_pipeline/pipeline_consolidated_event.yml

@@ -7,15 +7,9 @@ processors:
   - grok:
       field: cisco_secure_email_gateway.log.message
       patterns:
-        - "^(?:%{DATA:_tmp.timestamp} )?\
-          CEF:%{NUMBER:cisco_secure_email_gateway.log.cef_format_version}\
-          \\|%{WORD:cisco_secure_email_gateway.log.appliance.vendor}\
-          \\|%{DATA:cisco_secure_email_gateway.log.appliance.product}\
-          \\|%{DATA:cisco_secure_email_gateway.log.appliance.version}\
-          \\|%{DATA:cisco_secure_email_gateway.log.event_class_id}\
-          \\|%{DATA:cisco_secure_email_gateway.log.event.name}\
-          \\|%{WORD:event.severity}\
-          \\|%{GREEDYDATA:_tmp.details}$"
+        - "^(?:%{DATA:_tmp.timestamp} )?CEF:%{NUMBER:cisco_secure_email_gateway.log.cef_format_version}\\|%{WORD:cisco_secure_email_gateway.log.appliance.vendor}\\|%{DATA:cisco_secure_email_gateway.log.appliance.product}\\|%{DATA:cisco_secure_email_gateway.log.appliance.version}\\|%{DATA:cisco_secure_email_gateway.log.event_class_id}\\|%{DATA:cisco_secure_email_gateway.log.event.name}\\|%{WORD:event.severity}\\|%{GREEDYDATA:_tmp.details}$"
+      tag: grok_be30f38e
+
   - kv:
       field: _tmp.details
       target_field: _tmp.fields