Skip to content

0.17.0
Compare
Choose a tag to compare
@jasonish jasonish released this 28 May 00:33
· 302 commits to main since this release
0.17.0
This tag was signed with the committer’s verified signature.
jasonish Jason Ish
GPG key ID: 0D7D1E9430D309B9
Learn about vigilant mode.
4087922
This commit was signed with the committer’s verified signature.
jasonish Jason Ish
GPG key ID: 0D7D1E9430D309B9
Learn about vigilant mode.
  • Move to SolidJS for frontend development.
  • New special query string keywords:
    • @ip: match src_ip or dest_ip, and other fields known to be IP addresses
    • @earliest:TIMESTAMP
    • @latest:TIMESTAMP
  • Feature parity between SQLite and Elasticsearch. This means that
    some reports were removed, but should come back for both SQLite and
    Elasticsearch: #95
  • [sqlite] Enable event retention by default to a value of 7 days. If
    an SQLite database becomes too large, it can be hard to trim back
    down to a usable size without significant downtime.
  • Start on a new overview report.
  • Fix issue where alert report graph didn't refresh over time change:
    #247
  • Don't allow the agent to send a payload larger than the server can
    receive: #248
  • [webapp] Fix broken filter on SIDs search:
    #251
  • [packaging] Add default configuration file:
    #221
  • [webapp] Alert graph failing to refresh on time range change:
    #247
  • [agent] Add Elasticsearch as the submission endpoint for events.
  • [elastic-import] Deprecated, use the agent instead.
  • [sqlite] Database file size based event retention:
    #256
  • [server] Fix PCAP downloads when authentication fails:
    #262

Contributors

ip, latest, and earliest
Assets 2
Loading