github/falco
1
0
Fork 0
mirror of https://github.com/falcosecurity/falco.git synced 2026-04-04 11:02:16 +00:00
Code Issues Projects Releases Wiki Activity

Commit Graph

  • 0b8ecfaed3 docs(README.md): correct CONTRIBUTING.md URL Leonardo Grasso 2020-08-25 10:22:56 +02:00
  • b003c92080 docs(RELEASE.md): correct typo in YYYY Leonardo Grasso 2020-08-25 10:16:40 +02:00
  • d678be5579 Adding user.loginuid to the default falco rules in any place user.name exists This update will provide information as to which process uid intitiated the event. This is really important for processes that are started by a different user name. Chuck Schweizer 2020-08-25 13:17:35 -05:00
  • 0a4d60c22b docs: changelog for 0.25.0 0.25.0 Lorenzo Fontana 2020-08-25 14:35:26 +02:00
  • 385d6eff6d fix(userspace/falco): do not always rethrow the exception Leonardo Grasso 2020-08-25 13:00:30 +02:00
  • 7637ccd7a8 update(scripts): update Falco description fix/scripts-modprobe Leonardo Grasso 2020-08-25 11:28:11 +02:00
  • 40635ab620 fix(scripts): run modprobe before starting Falco Leonardo Grasso 2020-08-25 11:24:12 +02:00
  • e0b66ecae9 revert: "build: temporary remove falco_traces.yaml from integration test suite" Leonardo Grasso 2020-08-24 19:06:33 +02:00
  • a87913c822 build: update sysdig version to ae104eb20ff0198a5dcb0c91cc36c86e7c3f25c7 Leonardo Grasso 2020-08-24 19:04:34 +02:00
  • 7a2708de09 build: temporary remove falco_traces.yaml from integration test suite Lorenzo Fontana 2020-08-20 18:09:33 +02:00
  • fbac5b77ff build(cmake/modules): change driver version to 37aab8 Leonardo Di Donato 2020-08-20 14:13:20 +00:00
  • fc39c92048 build: update sysdig shasum Lorenzo Fontana 2020-08-20 13:47:50 +02:00
  • 32374e9d95 build(cmake/modules/jq): explaination for jq mirroring link Lorenzo Fontana 2020-08-20 11:32:32 +02:00
  • 220274601c build(cmake/jq): mirror jq 1.6 in Falco bintray Lorenzo Fontana 2020-08-19 17:05:28 +02:00
  • 08f6ddb889 build: CentOS 8 dependencies Lorenzo Fontana 2020-08-19 11:42:47 +02:00
  • 4166f02668 build: CentOS 8 builds Lorenzo Fontana 2020-08-19 11:22:24 +02:00
  • d6279bd474 build: bump gRPC to 1.31.1 Lorenzo Fontana 2020-08-19 01:18:09 +02:00
  • a20e3267cd build: make sure lyaml is linked with the bundled libyaml Lorenzo Fontana 2020-08-18 18:01:59 +02:00
  • 1362ad7c10 build: add ubuntu bionic to circleci Lorenzo Fontana 2020-08-18 13:30:35 +02:00
  • 0324e8b610 build: update gRPC to 0.27.0 Lorenzo Fontana 2020-08-18 11:31:24 +02:00
  • feb39010bb build: include openssl libraries in falco Lorenzo Fontana 2020-08-17 19:37:29 +02:00
  • 59b2bdac9d build: avoid autoreconf -fi in jq Lorenzo Fontana 2020-08-17 12:08:31 +02:00
  • f388d95591 build: gRPC link to bundled OpenSSL Lorenzo Fontana 2020-08-14 17:45:08 +02:00
  • 8bfd6eaef7 build: fix JQ compilation issues and link oniguruma Lorenzo Fontana 2020-08-14 17:44:21 +02:00
  • 4db3cc1f72 build: fix cURL ssl compilation issues Lorenzo Fontana 2020-08-14 17:43:43 +02:00
  • 52a2c253ce docs(community health files): fall back to org default community health files Tommy McCormick 2020-08-18 20:34:53 -04:00
  • 1f1f7c16b6 chore(rules): add renameat2 to rename macro Leonardo Grasso 2020-08-18 09:58:15 +02:00
  • ff77a36a03 feat(docs): Updating links for gRPC and Protobuf Kris Nova 2020-08-17 18:34:02 -07:00
  • 213e4f6aaf feat(docs): Fixing formatting in README.md Kris Nova 2020-08-17 18:29:06 -07:00
  • 5839e41093 feat(docs): Adding SDKs and gRPC to README.md Kris Nova 2020-08-17 18:27:27 -07:00
  • 974efadaee feat(doc): Adding incubating to README.md Kris Nova 2020-08-17 17:13:03 -07:00
  • 615313e8fa feat(doc): Updating README.md Kris Nova 2020-08-17 17:12:17 -07:00
  • 4c25135bf9 update: bump sysdig to 0.27.0 Lorenzo Fontana 2020-08-17 17:42:01 +02:00
  • 1bb0a9b44a minor fix kaizhe 2020-08-13 10:46:36 -07:00
  • ca3c4814fe add sematext images back kaizhe 2020-08-11 14:19:10 -07:00
  • 50832c7990 remove non-oss images in the whitelist kaizhe 2020-08-10 14:30:59 -07:00
  • 4eba59c3f0 keep both w/ docker.io and w/o docker.io for sysdig images kaizhe 2020-08-07 17:35:15 -07:00
  • 3e98c2efc0 macro(user_read_sensitive_file_containers): replace endswiths with exact image repo name macro(user_trusted_containers): replace endswiths with exact image repo name macro(user_privileged_containers): replace endswiths with exact image repo name macro(trusted_images_query_miner_domain_dns): replace endswiths with exact image repo name macro(falco_privileged_containers): append "/" to quay.io/sysdig list(falco_privileged_images): add images docker.io/sysdig/agent-slim and docker.io/sysdig/node-image-analyzer list(falco_sensitive_mount_images): add image docker.io/sysdig/agent-slim list(k8s_containers): prepend docker.io to images kaizhe 2020-08-07 12:25:29 -07:00
  • 938ece8f4e macro(exe_running_docker_save): add better support for centos Radu Andries 2020-08-12 10:34:32 +02:00
  • 511ef52717 rule (EphemeralContainers Created): add new rule to detect ephemeral container created perf-experiments kaizhe 2020-07-31 15:08:00 -07:00
  • e2bf87d207 macro(trusted_pod): add new list k8s_image_list kaizhe 2020-07-30 16:19:05 -07:00
  • 7ab327749f chore(userspace/engine): format lua source code fix/1272 Leonardo Grasso 2020-07-22 13:17:22 +02:00
  • 4450fd3c4c revert(rules): remove require_engine_version at rule level Leonardo Grasso 2020-07-22 13:10:48 +02:00
  • 5cca1a6589 rule(Create Disallowed Pod): required_engine_version 5 rule(Create Privileged Pod): required_engine_version 5 rule(Create Sensitive Mount Pod): required_engine_version 5 rule(Create HostNetwork Pod): required_engine_version 5 rule(Pod Created in Kube Namespace): required_engine_version 5 rule(ClusterRole With Wildcard Created): required_engine_version 5 rule(ClusterRole With Write Privileges Created): required_engine_version 5 rule(ClusterRole With Pod Exec Created): required_engine_version 5 Lorenzo Fontana 2020-06-23 12:04:17 +02:00
  • 130126f170 rules(Container Drift Detected (open+create)): specify that rule is only compatible with engine 6 Lorenzo Fontana 2020-06-23 11:38:50 +02:00
  • c886debf83 rules: the required_engine_version is now on by default Lorenzo Fontana 2020-06-23 11:02:25 +02:00
  • 0a600253ac falco-driver-loader: fix conflicting $1 argument usage Antoine Deschênes 2020-07-27 15:18:13 -04:00
  • 571f8a28e7 add macro user_read_sensitive_file_containers kaizhe 2020-07-23 16:22:48 -07:00
  • 6bb0bba68a rules update(Read sensitive file untrusted): add trusted images into whitelist kaizhe 2020-07-23 13:57:55 -07:00
  • f1a42cf259 rule(list allowed_k8s_users): add "kubernetes-admin" user Leonardo Grasso 2020-07-21 12:46:17 +02:00
  • 427c15f257 rule(macro falco_privileged_images): add 'docker.io/falcosecurity/falco' Nicolas Vanheuverzwijn 2020-07-23 10:29:12 -04:00
  • a9b4e6c73e add sysdig/agent-slim to the user_trusted_images macro kaizhe 2020-07-20 11:03:35 -07:00
  • b32853798f rule update (macro: user_trusted_containers): add sysdig/node-image-analyzer to macro user_trusted_containers kaizhe 2020-07-20 10:56:03 -07:00
  • b86bc4a857 Use ISO 8601 format for changelog dates. Shane Lawrence 2020-07-16 11:49:46 -04:00
  • 23224355a5 docs(test): integration tests intended to be run against a release build of Falco Leo Di Donato 2020-07-20 21:03:17 +02:00
  • 84fbac0863 chore(.circleci): switch back to falcosecurity/falco-tester:latest runner for integration tests Leo Di Donato 2020-07-20 10:26:52 +02:00
  • 3814b2e81b docs(test): run all the test suites at once Leonardo Di Donato 2020-07-14 17:34:33 +00:00
  • a83b91fc53 new(test): run_regression_tests.sh -h Leonardo Di Donato 2020-07-14 17:33:39 +00:00
  • e618f005b6 update(docker/tester): use the new run_regression_tests.sh CLI flags Leonardo Di Donato 2020-07-14 16:43:02 +00:00
  • d8faa95702 fix(test): run_regression_tests.sh must generate falco_traces test suite in a non-interactive way Leonardo Di Donato 2020-07-14 16:05:43 +00:00
  • ef5e71598a docs(test): instruction to run falco_tests_package integration test suite locally Leonardo Di Donato 2020-07-14 16:01:48 +00:00
  • bb1282c7be update(test): make run_regression_tests.sh script accept different options Leonardo Di Donato 2020-07-14 13:33:39 +00:00
  • 8f07189ede docs(test): instructions for executing falco_traces integration test suite Leonardo Di Donato 2020-07-14 13:09:20 +00:00
  • dec2ff7d72 docs(test): prepare the local environment for running integration test suites Leonardo Di Donato 2020-07-13 20:05:09 +00:00
  • f3022e0abf build(test): target test-traces files Leonardo Di Donato 2020-07-13 19:58:38 +00:00
  • 9b42b20e1c build(test/trace_files): target trace-files-base-scap Leonardo Di Donato 2020-07-13 19:57:57 +00:00
  • 850a49989f build(test/trace_files/psp): target trace-files-psp Leonardo Di Donato 2020-07-13 19:57:33 +00:00
  • 0dc2a6abd3 build(test/traces_file/k8s_audit): target trace-files-k8s-audit Leonardo Di Donato 2020-07-13 19:56:33 +00:00
  • 4346e98f20 feat(userspace/falco): print version at startup Leonardo Grasso 2020-07-07 15:53:25 +02:00
  • 38009f23b4 build: remove libyaml from cpack rpm Lorenzo Fontana 2020-06-26 09:52:04 +02:00
  • 324a3b88e7 build: remove libyaml-0-2 as dependency in packages and dockerfiles Lorenzo Fontana 2020-06-09 13:07:17 +02:00
  • c03f563450 build: libyaml in bundled deps Lorenzo Fontana 2020-06-09 13:02:57 +02:00
  • c4b7f17271 docs: refinements to the release process docs 0.24.0 Leonardo Di Donato 2020-07-16 10:12:48 +00:00
  • ebb0c47524 docs: 0.24.0 changelog entries Leonardo Di Donato 2020-07-16 09:46:58 +00:00
  • a447b6996e fix(userspace): rethrow inspector open exceptions Lorenzo Fontana 2020-07-15 11:38:53 +02:00
  • 596e7ee303 fix(userspace/falco): try to insert kernel module driver conditionally Leonardo Di Donato 2020-07-14 18:45:38 +00:00
  • 8ae6aa51b9 chore: onetbb dependency is back Leonardo Di Donato 2020-07-14 18:15:25 +00:00
  • 1343fd7e92 update(userspace/falco): userspace instrumentation help line Leo Di Donato 2020-07-14 20:06:02 +02:00
  • 1954cf3af3 update(userspace/falco): edits to the falco CLI Kris Nova 2020-07-13 14:16:17 -07:00
  • bc8f9a5692 feat(cli): adding -u to the usage text Kris Nova 2020-05-06 13:51:46 -07:00
  • 1af1226566 feat(build): fixing MD5 of tpp for udig/pdig build Kris Nova 2020-05-06 13:02:26 -07:00
  • c743f1eb68 feat(cli): adding -u to flip inspector method calls Loris Degioanni 2020-03-15 14:34:19 -07:00
  • bca98e0419 update(rules): disable drift detection rules by default Leonardo Grasso 2020-07-15 11:55:36 +02:00
  • d1b0ccb89e rule(Create Disallowed Pod): required_engine_version 5 rule(Create Privileged Pod): required_engine_version 5 rule(Create Sensitive Mount Pod): required_engine_version 5 rule(Create HostNetwork Pod): required_engine_version 5 rule(Pod Created in Kube Namespace): required_engine_version 5 rule(ClusterRole With Wildcard Created): required_engine_version 5 rule(ClusterRole With Write Privileges Created): required_engine_version 5 rule(ClusterRole With Pod Exec Created): required_engine_version 5 fix/1272-test Lorenzo Fontana 2020-06-23 12:04:17 +02:00
  • 6abebbb913 rules(Container Drift Detected (open+create)): specify that rule is only compatible with engine 6 Lorenzo Fontana 2020-06-23 11:38:50 +02:00
  • 80e6f6de98 rules: the required_engine_version is now on by default Lorenzo Fontana 2020-06-23 11:02:25 +02:00
  • 32bae35de2 rule(list package_mgmt_binaries): add snapd to list Nicolas Marier 2020-06-29 15:10:00 -04:00
  • de147447ed update(userspace/falco): rename --stats_interval to --stats-interval Leonardo Grasso 2020-07-08 15:21:53 +02:00
  • 825e249294 update(userspace/falco): rename --stats_interval to --stats-interval Leonardo Di Donato 2020-07-08 09:02:20 +00:00
  • 00689a5d97 fix(userspace/falco): allow stats interval greather than 999 milliseconds Leonardo Di Donato 2020-07-08 09:01:45 +00:00
  • 4d31784a83 fix(docker): correct syntax error in the entrypoint script Leonardo Grasso 2020-07-08 10:15:56 +02:00
  • 2848eceb03 build(cmake/modules): update driver version to 85c889 Leonardo Di Donato 2020-07-07 17:14:12 +00:00
  • c7ac1ef61b update(userspace/engine): const correctness for json_event class Leonardo Di Donato 2020-07-07 17:09:50 +00:00
  • 5fd3c38422 build(cmake/modules): update driver version to 33c00f Leonardo Di Donato 2020-07-07 11:31:56 +00:00
  • 3bad1d2a56 docs: auto threadiness comment into Falco config Leo Di Donato 2020-06-24 11:12:40 +02:00
  • 8ad5c4f834 update: default grpc server threadiness is 0 now ("auto") Leonardo Di Donato 2020-06-22 15:47:16 +00:00
  • 553856ad68 chore(userspace): log the gRPC threadiness Leonardo Di Donato 2020-06-22 15:43:33 +00:00
  • 2d52be603d update(userspace/falco): gRPC server threadiness 0 by default (which means "auto") Leonardo Di Donato 2020-06-22 15:41:37 +00:00
  • 75e62269c3 new: hardware_concurrency helper Leonardo Di Donato 2020-06-22 15:40:20 +00:00
  • 3d1f27d082 build: stale bot adjustements Removed not existing labels and made the error message a bit more verbose to tell people what to expect next. Lorenzo Fontana 2020-07-01 14:36:22 +02:00