crowdsecurity/crowdsec v1.6.10

on GitHub

Overview

This release mostly focuses on small bug fixes and improvements:

• WAF: fixed a resource leak in the appsec datasource when checking bouncer authentication
• Allowlists: added cscli allowlists check to check if an IP/range belongs to an allowlist
• S3 datasource: added support for SNS notifications
• HTTP datasource: added support for GET and HEAD requests to allow the log provider to confirm the datasource is working.

Full changelog is below.

Improvements

• enhance: Add allowlist check (#3684) @LaurenceJJones
• Flags for console features (#3457) @Simbiat
• HTTP datasource: allow GET/HEAD request for checking if the datasource is working (#3710) @blotus
• enhance: appsec reuse httpc optimization (#3693) @LaurenceJJones
• hubtest: resolve relative path for 'cscli', 'crowdsec' (#3651) @mmetc
• refact pkg/cwhub (#3666) @mmetc
• S3 datasource: add support for SNS format (#3716) @blotus

Changes

• refact pkg/acquisition: extract loop method (#3615) @mmetc
• refact: plugin config parsing (#3640) @mmetc
• refact: migrate net.IP -> net/netip: part 1 (#3680) @mmetc
• use github.com/cenkalti/backoff/v5 for apiclient backoff (#3662) @mmetc
• use go 1.24.4 (#3674) @mmetc
• cscli help typos (#3707) @mmetc
• move cti expr helper to pkg/cticlient (#3696) @mmetc
• refact csplugin: move ProfileAlert to models (#3671) @mmetc
• refact cmd/crowdsec: extract functions from runCrowdsec() (#3669) @mmetc
• cscli capi register: no error if online_api_credentials.yaml does not exist (#3645) @mmetc
• refact cmd/crowdsec: move plugin initialization to apiserver (#3668) @mmetc
• lint: require name on interface parameters (#3614) @mmetc
• unit tests: rename ./tests, ./test_data -> ./testdata (#3673) @mmetc

Bug Fixes

• Fix infinite loop in decisions list for some values of limit (#3695) @blotus
• fix: Reset datafiles before loading the hub on HUP (#3712) @LaurenceJJones
• fix: allowlist use content created at instead of list itself (#3703) @LaurenceJJones
• pkg/apiserver: remove incorrect log.Error (#3672) @mmetc

Chore / Deps

• dependabot: set kind/dependencies label (#3722) @blotus
• CI: update action deps (#3692) @mmetc
• update golangci-lint v2.2 and config (#3713) @mmetc
• refact: replace iplib with net/netip (#3642) @mmetc
• update hashicorp/go-plugin (#3694) @mmetc
• update github.com/jedib0t/go-pretty/ (#3705) @mmetc

Geolite2 notice

This product includes GeoLite2 data created by MaxMind, available from https://www.maxmind.com.

Installation

Take a look at the installation instructions.