crowdsecurity/crowdsec v1.2.1

on GitHub

Changes

• Added a cscli explain command allowing user to understand logs processing / debug parsers

Improvements

• Add a --key to cscli config show (#1029) @buixor
• Add name and alias in cscli console enroll (#950) @AlteredCoder
• Allow using cloudwatch using iam role instead of hardcoded tokens (#1035) @sbs2001
• Allow user to specify key for bouncers. (#1026) @sbs2001
• Add --limit parameter to cscli decisions list (#1025) @blotus
• Entgo 0.9 (#1018) @buixor
• Add ParseUri() expr helper (#994) @blotus
• Optimize the flush function by deleting alerts based on their id (#1054) @blotus
• feature cscli|crowdsec add additional labels on crowdsec dsn run (#1053) @he2ss

Bugfixes

• Fix issue 1033 (#1034) @AlteredCoder
• Improve explain (#1039) @buixor
• Make docker start executable (#1031) @sbs2001
• Fix typos (#1036) @mmetc
• .gitignore plugin binaries (#1037) @mmetc
• Extra syslog debug (#1030) @buixor
• Alerts flush: Only run one job at a time + add cscli alerts flush command (#1024) @blotus
• Fix #1010 : don't wait on tomb if no datasources were started (#1019) @buixor
• Don't attempt to start crowdsec if LAPI has been disabled with debconf (#1016) @blotus
• Fix bugs in cloudwatch acq (#991) @sbs2001
• fix perms in package installation (#1012) @sabban
• Remove plugins with "make clean" (#1015) @mmetc
• Fix #1008 + regenerate localhost credentials on start (#1009) @he2ss
• Fix sort of results (#1007) @buixor
• Multiple fixes (#1006) @buixor
• Ensure machineID is included early enough into the alert (#1004) @buixor
• Fix typo in cscli help command (#1001) @AlteredCoder
• Fix hubtest CI (#1000) @AlteredCoder
• Break on success when alert already has decision (#997) (#999) @AlteredCoder
• Add functionnal test for hubtest (#996) @AlteredCoder
• Hub tests pimpance (#988) @buixor
• Fix node success logic (#993) @buixor
• Fix plugins logging in right level (#990) @he2ss
• Update test env (#987) @he2ss
• #975 Mysql default parser: parse also lines with using password NO (#976) @nitescuc
• Fix usage of regex.Match in cloudwatch module (#986) @blotus
• Update golang.org/x/sys dep (#983) @blotus
• Allow coveralls job to fail, as it is down :( (#984) @blotus
• Update docker entrypoint script (#982) @he2ss
• Update README.md (#974) @sbs2001
• Fix #873 without breaking backward (#1052) @buixor
• Use math.MaxInt32 instead of math.MaxUint32 (#980) @erdoukki
• Add ARM64 docker images. (#1051) @FireMasterK
• Add --failures to explain feature : only display failed lines (#1048) @buixor
• Fix wizard.sh errors in docker and alpine (#1044) @mmetc
• Add evt. in cscli explain (#1045) @buixor
• Removed legacy cron script (#1040) @mmetc

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.