Skip to content

Releases: crowdsecurity/crowdsec

v1.6.5

07 Feb 13:44
@sabban sabban
v1.6.5
d8dcdc9
Compare
Choose a tag to compare
v1.6.5 Latest
Latest

Overview

**This release highlights the appsec feature. Important fixes were done. **

See documentation here

**The cscli hub command has been revamped.

See documentation here

New Features

Improvements

  • don't ask user to reload systemd service when running in docker (#3434) @mmetc
  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Changes

  • wizard.sh: remove obsolete --yes option (#3450) @mmetc
  • cscli: replace '--yes' option with '--interactive' (#3448) @mmetc
  • CI: use alpine 3.21 for docker build (#3445) @mmetc
  • merge from master (dc28ae5) for 1.6.5 (#3444) @mmetc
  • run 'hub upgrade' in rpm/deb postinst, improve hub message (#3440) @mmetc
  • CI: setup go from version in go.mod (#3432) @mmetc
  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

Bug Fixes

  • cscli: exclude removed commands from generated docs (#3449) @mmetc
  • cscli: when prompting, use default in case of EOF instead of going for "no" (#3447) @mmetc
  • ignore zero value variables for context (#3436) @blotus
  • bucket: avoid crashing on malformed expression (fix #3351) (#3368) @mmetc
  • fix parsing of noncompliant RFC3339 timestamps missing only a timezone (#3346) @gilbsgilbs
  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 8 other contributors
Assets 7
Loading

v1.6.5-rc8

07 Feb 11:18
@sabban sabban
v1.6.5-rc8
d8dcdc9
Compare
Choose a tag to compare
v1.6.5-rc8 Pre-release
Pre-release

Changes

  • wizard.sh: remove obsolete --yes option (#3450) @mmetc
  • cscli: replace '--yes' option with '--interactive' (#3448) @mmetc
  • CI: use alpine 3.21 for docker build (#3445) @mmetc
  • merge from master (dc28ae5) for 1.6.5 (#3444) @mmetc
  • run 'hub upgrade' in rpm/deb postinst, improve hub message (#3440) @mmetc
  • CI: setup go from version in go.mod (#3432) @mmetc
  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • don't ask user to reload systemd service when running in docker (#3434) @mmetc
  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • cscli: exclude removed commands from generated docs (#3449) @mmetc
  • cscli: when prompting, use default in case of EOF instead of going for "no" (#3447) @mmetc
  • ignore zero value variables for context (#3436) @blotus
  • bucket: avoid crashing on malformed expression (fix #3351) (#3368) @mmetc
  • fix parsing of noncompliant RFC3339 timestamps missing only a timezone (#3346) @gilbsgilbs
  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 8 other contributors
Assets 5
Loading

v1.6.5-rc7

06 Feb 10:45
@github-actions github-actions
v1.6.5-rc7
eb1defa
Compare
Choose a tag to compare
v1.6.5-rc7 Pre-release
Pre-release

Changes

  • cscli: replace '--yes' option with '--interactive' (#3448) @mmetc
  • CI: use alpine 3.21 for docker build (#3445) @mmetc
  • merge from master (dc28ae5) for 1.6.5 (#3444) @mmetc
  • run 'hub upgrade' in rpm/deb postinst, improve hub message (#3440) @mmetc
  • CI: setup go from version in go.mod (#3432) @mmetc
  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • don't ask user to reload systemd service when running in docker (#3434) @mmetc
  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • cscli: when prompting, use default in case of EOF instead of going for "no" (#3447) @mmetc
  • ignore zero value variables for context (#3436) @blotus
  • bucket: avoid crashing on malformed expression (fix #3351) (#3368) @mmetc
  • fix parsing of noncompliant RFC3339 timestamps missing only a timezone (#3346) @gilbsgilbs
  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 8 other contributors
Assets 5
Loading

v1.6.5-rc6

05 Feb 15:57
@github-actions github-actions
v1.6.5-rc6
ec4055f
Compare
Choose a tag to compare
v1.6.5-rc6 Pre-release
Pre-release

Changes

  • CI: use alpine 3.21 for docker build (#3445) @mmetc
  • merge from master (dc28ae5) for 1.6.5 (#3444) @mmetc
  • run 'hub upgrade' in rpm/deb postinst, improve hub message (#3440) @mmetc
  • CI: setup go from version in go.mod (#3432) @mmetc
  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • don't ask user to reload systemd service when running in docker (#3434) @mmetc
  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • cscli: when prompting, use default in case of EOF instead of going for "no" (#3447) @mmetc
  • ignore zero value variables for context (#3436) @blotus
  • bucket: avoid crashing on malformed expression (fix #3351) (#3368) @mmetc
  • fix parsing of noncompliant RFC3339 timestamps missing only a timezone (#3346) @gilbsgilbs
  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 8 other contributors
Assets 5
Loading

v1.6.5-rc5

05 Feb 13:46
@github-actions github-actions
v1.6.5-rc5
c7ef2a9
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.5-rc5 Pre-release
Pre-release

Changes

  • CI: setup go from version in go.mod (#3432) @mmetc
  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc
  • run 'hub upgrade' in rpm/deb postinst, improve hub message (#3440)

New Features

Improvements

  • don't ask user to reload systemd service when running in docker (#3434) @mmetc
  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • ignore zero value variables for context (#3436) @blotus
  • bucket: avoid crashing on malformed expression (fix #3351) (#3368) @mmetc
  • fix parsing of noncompliant RFC3339 timestamps missing only a timezone (#3346) @gilbsgilbs
  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 8 other contributors
Assets 5
Loading

v1.6.5-rc4

31 Jan 10:28
@LaurenceJJones LaurenceJJones
v1.6.5-rc4
bfed861
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.5-rc4 Pre-release
Pre-release

Changes

  • CI: setup go from version in go.mod (#3432) @mmetc
  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • don't ask user to reload systemd service when running in docker (#3434) @mmetc
  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • ignore zero value variables for context (#3436) @blotus
  • bucket: avoid crashing on malformed expression (fix #3351) (#3368) @mmetc
  • fix parsing of noncompliant RFC3339 timestamps missing only a timezone (#3346) @gilbsgilbs
  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 8 other contributors
Assets 7
Loading

v1.6.5-rc3

29 Jan 09:38
@github-actions github-actions
v1.6.5-rc3
51f762c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.5-rc3 Pre-release
Pre-release

Changes

  • CI: package docker tests with uv (#3429) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 6 other contributors
Assets 7
Loading

v1.6.5-rc2

27 Jan 14:24
@LaurenceJJones LaurenceJJones
v1.6.5-rc2
5a37161
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.5-rc2 Pre-release
Pre-release

Changes

  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

  • fix: use CreatedAt instead of StartAt (#3427) @LaurenceJJones
  • use the actual bucket name when checking for simulation mode (#3416) @blotus
  • appsec: do not attempt to deduplicate native modsec rules (#3347) @buixor
  • Removed updating of machine last_heartbeat based on baseMetrics in MachineUpdateBaseMetrics (#3425) @srkoster
  • cscli hub: handle freebsd pre-release version numbers (#3423) @mmetc
  • wizard: install systemd service file (#3418) @mmetc
  • pkg/cticlient: Add missing field in SmokeItem and FireItem (#3413) @AlteredCoder
  • fix: Bucket pour log error with message (#3378) @LaurenceJJones
  • gin: do not use gin context after returning response (#3398) @blotus
  • wizard: unattended install w/ new hubops (#3392) @mmetc
  • cscli: print errors in plain text with -o json (#2973) @mmetc
  • sigmahq: fix functional test (#3359) @mmetc
  • appsec: missing err check when initializing out-of-band engine (#3344) @blotus

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

New Contributors

Full Changelog: v1.6.4...v1.6.5-rc2

Contributors

rnagy, blotus, and 8 other contributors
Assets 7
Loading

v1.6.5-rc1

21 Jan 12:43
@github-actions github-actions
v1.6.5-rc1
1b5514c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.5-rc1 Pre-release
Pre-release

Changes

  • wizard: install systemd service file (#3418) @mmetc
  • Improve post-installation message (#3407) @blotus
  • deb packaging: prevent installing crowdsec.service twice (#3415) @mmetc
  • deb build: get version with dpkg-parsechangelog -S (#3405) @mmetc
  • cscli: cliconfig - refactor / remove global variables and gratuitous pointer (#3414) @mmetc
  • lint: enable errcheck; add allowlist and explicit checks (#3403) @mmetc
  • lint: gocritic/captLocal (don't capitalize local variables) (#3402) @mmetc
  • remove commands "cscli config backup/restore" (#3158) @mmetc
  • CI: golangci-lint 1.63 (#3396) @mmetc
  • Hubops tests (#3393) @mmetc
  • cscli hub: refact/split files; add some doc/examples (#3394) @mmetc
  • lint: explicit error checks (#3388) @mmetc
  • pkg/cwhub - refact Downloader (#3382) @mmetc
  • lint: replace type assertions and type switch on errors (#3376) @mmetc
  • refactor pkg/leakybucket (#3371) @mmetc
  • refact pkg/database: clean up code and error messages (#3263) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3367) @mmetc
  • loop performance optimizations / 2 (#3364) @mmetc
  • lint/deep-exit: avoid log.Fatal (#3360) @mmetc
  • lint: enable more gocritic checks (#3363) @mmetc
  • acquisition: add some test and warning for wrong source type (#3362) @mmetc
  • support dump: generate pprof files with debug=1 to avoid generating an unusable heap dump (#3361) @blotus
  • lint: style, autofix (#3354) @mmetc
  • update golangci-lint to 1.62 (#3332) @mmetc

New Features

Improvements

  • enhance: Log appsec error on writing response to remediation (#3412) @LaurenceJJones
  • test pkg/exprhelpers: explicit message if the tag "expr_debug" is missing (#3400) @mmetc
  • log warning if local items have conflicting names (#3399) @mmetc
  • feat(cscli): add env variable flag for dashboard setup (#3110) @quantumsheep
  • expand env var when loading acquis (#3375) @blotus
  • cscli: restyle table titles; autocomplete "cscli metrics show" (#3391) @mmetc
  • enhancement: Hubtest respect patterndir option set via config.yaml (#3386) @LaurenceJJones
  • enhancement: add logdata to appsec AccumlateTxToEvent (#3383) @LaurenceJJones
  • cscli: improved hub management (#3352) @mmetc
  • cscli: display expired decisions' expiration time in red (#3357) @mmetc
  • loop performance optimizations / 1 (#3313) @mmetc

Bug Fixes

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, quantumsheep, and 4 other contributors
Assets 7
Loading

v1.6.4

20 Nov 11:19
@sabban sabban
v1.6.4
523164f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.6.4

Overview

HTTP datasource

This release introduce http data source that enable crowdsec to ingest logs from an http endpoint such as Datadog or Vector.

See documentation here

Alert context appsec

This release also introduces the alert context ability when using appsec.

See related doc here

Replay evtx file support

This release allows Windows CrowdSec users to replay Winevent evtx files.

Bouncers API Key sharing

Bouncers running on different machines can now share the same API key without interfering with each other. Each bouncer will appear as bouncer_name@IP in the bouncer list. (#3323)

New Features

Improvements

  • Allow bouncers to share API keys (#3323) @blotus
  • Support multiple appsec configs (#3314) @buixor
  • context propagation: papi, loki (#3308) @mmetc
  • Add explicit configuration for signals sharing and blocklists pull (#3277) @blotus
  • loki: add no_ready_check option (#3317) @blotus
  • logs and user messages: use "serialize" and "parse" instead of marshal/unmarshal (#3240) @mmetc
  • context propagation: cscli {capi,lapi,papi} (#3228) @mmetc
  • refact pkg/database: context propagation (start) (#3226) @mmetc

Changes

  • make: improve re2/wasm check (#3335) @mmetc
  • fix go version for azure pipeline (#3324) @blotus
  • add go minor in go.mod (#3318) @sabban
  • update checks for wrapped errors (#3117) @mmetc
  • refact cscli: decisions, lapi, bouncers, machines (#3306) @mmetc
  • make: remove obsolete/redundant parameters (#3304) @mmetc
  • remove unused code: HandleDeletedDecisions() (#3301) @mmetc
  • CI: update coverage ignore list for generated code (#3262) @mmetc
  • lint/revive: check tags on non-exported struct fields (#3257) @mmetc
  • context propagation: don't store ctx in api controller (#3268) @mmetc
  • CI: check generated code in test workflow (#3261) @mmetc
  • remove dependency from pkg/cwversion to pkg/acquisition (#3242) @mmetc
  • lint/nestif: reduce hubtest complexity (#3244) @mmetc
  • refact: alerts query (#3216) @mmetc
  • lint: enable (some) gocritic checks (#3238) @mmetc
  • enable linters: copyloopvar, intrange (#3184) @mmetc
  • refact acquisition: build profiles (optionally exclude datasources from final binary) (#3217) @mmetc
  • refact / split APIServer.Run() method (#3215) @mmetc
  • refact cscli - don't export functions if not required (#3224) @mmetc
  • refact: cscli papi (#3222) @mmetc
  • refact: pkg/apiclient set and use default user agent (#3219) @mmetc

Bug Fixes

Chore / Deps

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.

Contributors

blotus, buixor, and 5 other contributors
Assets 7
Loading