github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2025-08-27 18:40:22 +00:00
Code Issues Projects Releases Wiki Activity
4,292 Commits 118 Branches 173 Tags 105 MiB
4448d444b0
Commit Graph

4292 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Tom Müller
4448d444b0 added option for insecure http driver download 
added option for insecure http driver download to the falco docker entrypoint.

Signed-off-by: Tom Müller <60851960+toamto94@users.noreply.github.com>
 2024-02-12 14:47:16 +01:00
Tom Müller
0ec995037f added insecure http driver download 
added insecure http driver download to the driver-loader-legacy entrypoint.

Signed-off-by: Tom Müller <60851960+toamto94@users.noreply.github.com>
 2024-02-12 14:47:16 +01:00
Tom Müller
d7d877e16c added option for insecure http download 
Added option for insecure http driver download in the docker-entrypoint.sh script. By passing --http-insecure to the container via an argument, the flag is forwarded to the falcoctl driver install command.

Signed-off-by: Tom Müller <60851960+toamto94@users.noreply.github.com>
 2024-02-12 14:47:16 +01:00
Luca Guerra
f327a77059 fix(build): install libstdc++ in the Wolfi image 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Luca Guerra
acea57ac44 update(ci): allow version/static checks to work even if libelf is not installed 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Luca Guerra
e37570116d update(build): install libelf in the nodriver image 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Luca Guerra
9ae09b6692 update(build): include libelf in the distroless image 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Luca Guerra
ca22ea50c1 update(build): disable musl builds 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Luca Guerra
f8f396fe19 update(ci): add libelf to build containers 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Luca Guerra
bfcfd58911 new(build): build with dynamic libelf by default 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-12 14:47:16 +01:00
Andrea Terzolo
ba229e5b54 new(docs): add changelog for 0.37.0 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-30 11:22:31 +01:00
Luca Guerra
b8a8c2d1bf update(build): update libs to 0.14.2 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-01-26 16:09:18 +01:00
Leonardo Grasso
a018132908 update(cmake/modules): bump Falco rules to 3.0 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2024-01-26 14:58:18 +01:00
Melissa Kilby
7f35ae723f update(config): soft deprecation of old stats 
add CHANGE NOTICE wrt syscall_event_drops

Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>
 2024-01-26 14:58:18 +01:00
Melissa Kilby
285d69ec42 cleanup(configs): adjust old stats deprecation notice 
Co-authored-by: Andrea Terzolo <andreaterzolo3@gmail.com>
Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>
 2024-01-26 14:58:18 +01:00
Melissa Kilby
78ce4d1ecc update!(config): add deprecation notice for syscall_event_drops 
Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>
 2024-01-26 14:58:18 +01:00
Melissa Kilby
a8ac367574 fix(userspace/metric): minor fixes in new libsinsp state metrics handling 
Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>
 2024-01-26 14:58:18 +01:00
Federico Aponte
dc96fe2c87 fix: nlohmann_json lib include path 
Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>
 2024-01-26 14:58:18 +01:00
Jason Dellaluce
102e49713d test(engine): assess proper list escaping in engine collector 
Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>
 2024-01-23 12:30:08 +01:00
Jason Dellaluce
8b5aab9ee0 fix(userspace/engine): avoid storing escaped strings in engine defs 
Signed-off-by: Jason Dellaluce <jasondellaluce@gmail.com>
 2024-01-23 12:30:08 +01:00
Federico Di Pierro
2f7582e2b6 update(cmake): bumped falcoctl to v0.7.1. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-23 12:30:08 +01:00
Andrea Terzolo
f4aef006fe chore: bump falco rules 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-17 16:20:55 +01:00
Andrea Terzolo
e1c07568b4 chore: bump Falco to libs 0.14.1 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-17 15:12:55 +01:00
dependabot[bot]
ded4bdde96 build(deps): Bump submodules/falcosecurity-rules 
Bumps [submodules/falcosecurity-rules](https://github.com/falcosecurity/rules) from `2ac430b` to `c39d31a`.
- [Release notes](https://github.com/falcosecurity/rules/releases)
- [Commits](2ac430be13...c39d31a0bc)

---
updated-dependencies:
- dependency-name: submodules/falcosecurity-rules
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-17 09:42:54 +01:00
Andrea Terzolo
ae9ffe414f cleanup: rename none into nodriver 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
 2024-01-17 09:41:55 +01:00
Melissa Kilby
d8c368b5ce update(config): graduate outputs_queue to stable 
Signed-off-by: Melissa Kilby <melissa.kilby.oss@gmail.com>
 2024-01-16 12:54:51 +01:00
Federico Di Pierro
b718083fe7 update(cmake): bump falcoctl to v0.7.0. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-12 11:50:39 +01:00
dependabot[bot]
3f4ed4ca4b build(deps): Bump submodules/falcosecurity-rules 
Bumps [submodules/falcosecurity-rules](https://github.com/falcosecurity/rules) from `1221b9e` to `2ac430b`.
- [Release notes](https://github.com/falcosecurity/rules/releases)
- [Commits](1221b9e817...2ac430be13)

---
updated-dependencies:
- dependency-name: submodules/falcosecurity-rules
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-01-12 00:55:38 +01:00
Andrea Terzolo
a6a1a9769f cleanup: restore the name of a variable 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
Co-authored-by: Luca Guerra <luca.guerra@sysdig.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
e601ec2eab chore: bump testing submodule manually to fix e2e tests 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
64bbffe5ef fix codespell 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
5ee05abc08 cleanup: adopt a new helper method in tests 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
c308f5c7e2 cleanup: rename some error messages 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
ee78c862ad tests: add some new tests on override replace 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
8ebdbe3e6f cleanup: use macros for default error messages 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
91d1511285 tests: add test on the order for macro and rules 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
3f9ede86bb tests: add some new tests about list order 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
5192921732 doc: typo in the exception 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
56de6e6786 update(rule_loader): remove the warning on the required_engine_version 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
f5dea33b5e update(falco): always enable rules warnings 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
b318c165da cleanup(falco_engine): remove unused methods 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
5ac005bd4d update(rule_loader): deprecate all non-SemVer compatible values 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
2367d36867 cleanup(tests): use new check_error_message helper 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
95e4c58e7f update(rule_loader): deprecate enabled usage 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
4aebee684a update(rule_loader): deprecate append key and add a warning 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
63736563a2 cleanup(rule_loader): remove useless include 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Andrea Terzolo
7cac2833b2 cleanup(rule_loader): add a common log message 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-01-11 15:37:38 +01:00
Federico Di Pierro
447a251e16 chore(ci): bumped rn2md to latest master. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-11 09:52:38 +01:00
Federico Di Pierro
b5e64c52f3 fix(ci): manually invoke falcoctl to install cloudtrail and k8saudit plugin before running tests. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-11 09:08:38 +01:00
Federico Di Pierro
bbef26aad0 cleanup(cmake): dropped bundled plugins since falcoctl takes care of everything. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-11 09:08:38 +01:00