github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2026-02-21 14:13:27 +00:00
Code Issues Projects Releases Wiki Activity
4,481 Commits 123 Branches 184 Tags
cd073a033a86ebd2cc6a3d4a7da2ef37e156ff67
Commit Graph

173 Commits

Author SHA1 Message Date
Federico Di Pierro
61dab93eb3 chore(ci): fixed BUILD_FALCO_MODERN_BPF usages. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-04-24 16:49:26 +02:00
Luca Guerra
7ac5c36d5a update(ci): build both release and debug versions 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-04-10 16:10:20 +02:00
Luca Guerra
05e6e3038c chore(build): update scorecard-action to v2.3.1 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-04-02 16:53:45 +02:00
Luca Guerra
b01ef55f6b new(ci): build with sanitizers in CI 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-03-29 14:08:24 +01:00
Andrea Terzolo
3395e604b6 ci: use ubuntu-22.04 with codeQL job 
Signed-off-by: Andrea Terzolo <andreaterzolo3@gmail.com>
 2024-03-12 16:29:17 +01:00
Federico Aponte
3954ff233b refactor(ci): Avoid using command make directly 
Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>
 2024-03-07 11:37:58 +01:00
Federico Di Pierro
f6818902de fix(ci): properly enforce bundled deps off in build-dev, like it was before https://github.com/falcosecurity/falco/pull/3092. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-02-27 11:07:25 +01:00
Federico Di Pierro
5ebc7bbd7c chore(ci): bumped codeql actions. 
Moveover, to avoid spending too much time (and space) on the job, build without bundled deps.

Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-02-26 17:55:21 +01:00
Federico Di Pierro
60ef759c70 fix(ci): test-dev-packages-arm64 needs build-dev-packages-arm64. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-02-23 15:42:08 +01:00
Federico Di Pierro
fbe45125ae cleanup(ci): make use of falcosecurity/testing provided composite action. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-02-19 10:56:47 +01:00
RohithRaju
1b9c2da601 update(CI): publish wasm package as dev-wasm 
Signed-off-by: RohithRaju <rohithraju488@gmail.com>
 2024-02-07 14:31:57 +01:00
Luca Guerra
30df5738a5 update(build): disable musl builds 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-02 19:57:40 +01:00
Luca Guerra
e3a3271c7a update(ci): add libelf to build containers 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-02 19:57:40 +01:00
Luca Guerra
b414b01aab update(ci): allow version/static checks to work even if libelf is not installed 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2024-02-02 19:57:40 +01:00
Federico Di Pierro
41ee64e006 chore(ci): bumped rn2md to latest master. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-31 11:39:35 +01:00
Federico Di Pierro
f66780eb81 fix(ci): fixed release body driver version. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-30 13:26:32 +01:00
Federico Di Pierro
447a251e16 chore(ci): bumped rn2md to latest master. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-11 09:52:38 +01:00
Federico Di Pierro
b5e64c52f3 fix(ci): manually invoke falcoctl to install cloudtrail and k8saudit plugin before running tests. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2024-01-11 09:08:38 +01:00
Federico Di Pierro
a2c128e934 chore(ci): revert #2961. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-12-20 12:09:12 +01:00
Federico Di Pierro
1ab4e9e0fc chore(ci): enable aarch64 falco driver loader tests. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-12-18 15:26:02 +01:00
Luca Guerra
8cf9b35b0e new(ci): run CI jobs on ARM64 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-12-07 18:26:28 +01:00
Luca Guerra
6e4ccb0007 update(ci): enable actuated.dev 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-12-07 18:26:28 +01:00
Federico Aponte
e558c4f5a5 chore(build): remove outdated development libs 
Signed-off-by: Federico Aponte <federico.aponte@sysdig.com>
 2023-12-06 05:46:25 +01:00
Luca Guerra
22cc2e5add fix(gha): disable branch protection rule trigger for scorecard 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-11-14 15:19:13 +01:00
Roberto Scolaro
6d4006a1ec feat(ci): create win32 and macos installer 
Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>
 2023-11-13 10:59:47 +01:00
Roberto Scolaro
29d3173ae3 feat(ci): add experimental other platforms support 
Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>

wip

Signed-off-by: Roberto Scolaro <roberto.scolaro21@gmail.com>
 2023-11-13 10:59:47 +01:00
Luca Guerra
3e95faac44 chore(gha): set cosign-installer to v3.1.2 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-11-05 06:06:14 +01:00
Massimiliano Giovagnoli
1609ee8559 ci(.github): add ossf scorecard pipeline 
Open Source Security Foundation Scorecard [1] is an automated tool
that assesses a number of important checks associated with
software security and assigns each check a score of 0-10.

Also, the OSSF Scorecard is one of the metrics monitored by
the CNCF CLO Monitor [2].

1. https://github.com/ossf/scorecard
2. https://github.com/cncf/clomonitor

Signed-off-by: Massimiliano Giovagnoli <me@maxgio.it>
 2023-10-26 19:00:45 +02:00
Luca Guerra
39aa8fe05f new(ci): add semgrep to check for banned functions 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-19 17:41:22 +02:00
Luca Guerra
fec8a825cd update(ci): update setup-go action 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-17 16:20:16 +02:00
Luca Guerra
fc35c02015 update(ci): update aws pipeline jobs 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-17 16:20:16 +02:00
Luca Guerra
e68bb3be7d update(ci): upgrade docker pipeline jobs 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-17 16:20:16 +02:00
Luca Guerra
e6d71d2e8e fix(gha): update rpmsign 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-05 18:39:00 +02:00
Luca Guerra
a77e2dec10 fix(gha): use fedora instead of centos 7 for package publishing 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-05 11:27:58 +02:00
Luca Guerra
f1dec8f444 chore(gha): pin actions with hash, add TODO for upgrades 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-03 15:11:54 +02:00
Luca Guerra
27ad4c3aec update(gha): update checkout action to v4 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-10-03 15:11:54 +02:00
Federico Di Pierro
3c93249efb new(ci): properly link libs and driver releases linked to a Falco release. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-09-29 19:01:22 +02:00
Lorenzo Susini
1326ca356e update(userspace/engine): address jasondellaluce comments for maintainability 
Signed-off-by: Lorenzo Susini <susinilorenzo1@gmail.com>
 2023-09-28 20:05:21 +02:00
Federico Di Pierro
7c7ec800a6 chore(ci): bumped rn2md to latest master. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-09-27 11:20:12 +02:00
Luca Guerra
260f189028 update(gha): add version for rn2md 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-09-22 14:34:49 +02:00
Federico Di Pierro
0884ca4c6f chore: automatically attach release author to release body. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-09-22 12:18:49 +02:00
Federico Di Pierro
e836157771 chore(ci): added permissions to release-body job. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-09-21 21:04:47 +02:00
Federico Di Pierro
086deb9c6d chore(ci): only run release-body for latest releases, and properly override release name. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-09-21 21:04:47 +02:00
Federico Di Pierro
49adbf6d08 new(ci): autogenerate release body. 
Signed-off-by: Federico Di Pierro <nierro92@gmail.com>
 2023-09-21 21:04:47 +02:00
Luca Guerra
60a64ac647 fix(docker): get the driver loader legacy from the right directory 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-09-13 15:19:40 +02:00
Luca Guerra
e5e7a4761d fix(build): set the right bucket and version for driver legacy 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-09-13 15:19:40 +02:00
Luca Guerra
b3b4f4a431 update(build): build and release falco-distroless 
Signed-off-by: Luca Guerra <luca@guerra.sh>
Co-authored-by: Leonardo Grasso <me@leonardograsso.com>
 2023-09-11 10:03:13 +02:00
Luca Guerra
22bd6f7352 update(build): publish the legacy driver image 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-09-07 15:55:59 +02:00
Luca Guerra
a22dac6866 update(falco)!: --list-syscall-events is now called --list-events 
Signed-off-by: Luca Guerra <luca@guerra.sh>
 2023-09-07 12:47:59 +02:00
Leonardo Grasso
e8e8c6413f fix(ci): make scap file work from within the container 
Signed-off-by: Leonardo Grasso <me@leonardograsso.com>
 2023-09-07 12:34:59 +02:00