Currently this plugin requires you to list out all CEF fields to be sent, this should be a library of all valid CEF fields and the constraints for each field, an option to send all valid cef fields would be preferred over listing out all CEF fields to be sent. You'd need to accommodate both syslog CEF and full CEF key names

Ex:
Syslog CEF, Full Key name, Type, Length
cs1, deviceCustomString1, string, 4000

Any time the codec sees cs1 or deviceCustomString1 greater than 4000 characters, it should truncate to the limit.