0.4.5

🔖 Release 0.4.5

What's New

• Fix error when creating node queries for large datasets by @zhuoyuan-liu in #631
• Refactor calls to debug messages in all services by @javuto in #632
• Using correct directory for make install_admin target by @javuto in #633
• Removing references to Debug Service or HTTP from all services by @javuto in #638
• Add inmemory cache for env by @zhuoyuan-liu in #636
• Refactor nodes package by @zhuoyuan-liu in #640
• Change default inactive hours to be positive by @javuto in #642
• Upgrade go to 1.24.2 by @javuto in #643
• Flag to enable the osctrld endpoints by @javuto in #646
• Refresh pre-commit config and remove python rules by @javuto in #647
• Potential fix for code scanning alert no. 25: Use of a known vulnerable action by @javuto in #648
• Potential fix for code scanning alert no. 20: Workflow does not contain permissions by @javuto in #650
• Potential fix for code scanning alert no. 24: Use of a known vulnerable action by @javuto in #649
• Update action/download-artifacts to latest version by @javuto in #651
• Potential fix for code scanning alert no. 19: Workflow does not contain permissions by @javuto in #652
• Potential fix for code scanning alert no. 11: Workflow does not contain permissions by @javuto in #653
• Potential fix for code scanning alert no. 14: Workflow does not contain permissions by @javuto in #654
• Using golang 1.24.3 by @javuto in #655
• Adding support for osquery 5.17.0 by @javuto in #656
• Lookup node by identifier inosctrl-api by @javuto in #657
• Adding support to osctrl-cli to look up nodes via osctrl-api by @javuto in #658
• Refactor strings.NewReader into bytes to avoid allocations by @javuto in #659
• Adding service users by @javuto in #661
• Dependencies bump and changes to osctrl-cli due to API changes by @javuto in #662
• Support for osquery 5.18.1 by @javuto in #663
• Adding deps-update in Makefile by @javuto in #664
• Prepare for release 0.4.5 by @javuto in #665
• Use cosign keyless to publish docker images by @javuto in #666
• Multiple fixes to tagged release GHA by @javuto in #667
• Update all actions to latest version and pin to commit by @javuto in #668
• Fix for cosign format due to multiple tags by @javuto in #669
• Fix for create_release GHA when tagged by @javuto in #670
• More accurate releases matrix by @javuto in #671
• Skip adding the commit sha in DEB package by @javuto in #672

Full Changelog: v0.4.4...v0.4.5

0.4.4

🔖 Release 0.4.4

What's New

• Fix to IsActive utility function in nodes package by @javuto in #608
• Adding cache client to nodes manager by @javuto in #609
• Using golang 1.24.1 by @javuto in #610
• Support for osquery 5.16.0 by @javuto in #611
• Assign the cache client when initializing the nodes manager by @javuto in #612
• Refactor and enhance pipeline with batch processing by @zhuoyuan-liu in #607
• Use the last_seen field in the node.html template by @javuto in #617
• Remove old push-based metrics by @zhuoyuan-liu in #615
• Caching nodes and retrieving them by @javuto in #613
• Add linter and clean up codebase by @zhuoyuan-liu in #616
• Last refactor changes from golangci-lint run by @javuto in #618
• Adding GitHub Action to run golangci-lint on PRs by @javuto in #620
• Move cli flags to a separate pkg by @zhuoyuan-liu in #619
• Add metrics for log processing and batch flush durations by @zhuoyuan-liu in #621
• Migrate all configuration consts from types to config pkg by @javuto in #622
• Using console log format for docker dev environment by @javuto in #623
• Executed go mod tidy after migrating to config pkg by @javuto in #624
• Fix for osctrl-tls after refactoring flags and configuration by @javuto in #625
• Bump github.com/golang-jwt/jwt/v4 from 4.5.1 to 4.5.2 in the go_modules group across 1 directory by @dependabot in #626
• Using new flags from config pkg in osctrl-admin by @javuto in #627
• Using new flags from config pkg in osctrl-api by @javuto in #628
• Fix expired distributed queries and enhance testing by @zhuoyuan-liu in #629
• Prepare for release 0.4.4 and update dependencies by @javuto in #630

Full Changelog: v0.4.3...v0.4.4

0.4.3

🔖 Release 0.4.3

What's New

• Forgotten osquery 5.12.1 by @javuto in #581
• Deploy dev with provision.sh using Makefile and fix for logger by @javuto in #582
• Support for osquery 5.15.0 by @javuto in #583
• Ability to add a single flag for osquery by @javuto in #584
• Adding new osquery option to configuration in osctrl-admin by @javuto in #585
• Prevent nil pointer when loading any JSON configuration by @javuto in #586
• Handle GET/POST if for SAML routes by @javuto in #587
• Avoid datatables errors with platform field by @javuto in #588
• Show AJAX error in the browser console by @javuto in #589
• Dependencies bump after changes by @javuto in #590
• Prevent empty page due to error with tags by @javuto in #591
• Prevent abuse of osctrl-tls public endpoints by @javuto in #592
• Adding types to tags by @javuto in #593
• Adding tag operations in osctrl-api by @javuto in #594
• Using tag operations with osctrl-cli by @javuto in #595
• Decorating tags with environment name via osctrl-api by @javuto in #596
• Updating OpenAPI YAML file with latest changes in osctrl-api by @javuto in #597
• Dependencies bump after changes by @javuto in #598
• Merge osctrl mod files into a single mod files by @zhuoyuan-liu in #599
• Refactor osctrl package by @zhuoyuan-liu in #600
• Complete the refactor to have single go.mod file by @javuto in #602
• Remove alias in node-actions for osctrl-cli to avoid conflict by @javuto in #603
• Prepare for release 0.4.3 and update dependencies by @javuto in #604

Full Changelog: v0.4.2...v0.4.3

0.4.2

🔖 Release 0.4.2

What's New

• Dependencies bump after release by @javuto in #557
• Remove old Ingested metrics by @zhuoyuan-liu in #559
• Improvements to elastic logger for osctrl-tls by @javuto in #560
• Different default logger file for osctrl-admin by @javuto in #561
• Better info messages starting osctrl-api by @javuto in #563
• Dependencies bump including jwt library by @javuto in #564
• Different default logger JSON in osctrl-tls and small change to startup messages by @javuto in #565
• Support for osquery 5.14.1 by @javuto in #566
• Fixes for pkg builder script by @javuto in #568
• Cleanup code in cache for logs by @javuto in #569
• Specify expiration for tokens in osctrl-admin and osctrl-api by @javuto in #570
• Bump golang.org/x/crypto from 0.28.0 to 0.31.0 in /users in the go_modules group across 1 directory by @dependabot in #571
• Refactor distributed query by @zhuoyuan-liu in #558
• Dependencies bump to prevent build errors by @javuto in #573
• Bump golang.org/x/crypto from 0.21.0 to 0.31.0 in /metrics in the go_modules group across 1 directory by @dependabot in #574
• Update to x/crypto to mitigate CVE-2024-45337 by @javuto in #575
• Add log level and format configuration options for services by @zhuoyuan-liu in #567
• Fix to prevent queries not completing by @javuto in #578
• Second step for refactor distributed query by @zhuoyuan-liu in #576
• Dependencies bump before release by @javuto in #579
• Preparing release 0.4.2 by @javuto in #580

Full Changelog: v0.4.1...v0.4.2

0.4.1

🔖 Release 0.4.1

What's New

• Keeping bruno files up to date to osctrl-api definition by @javuto in #525
• Adding flag to utilize the SSL support for the backend connection by @javuto in #526
• Add kafka backend (#1) by @saryani in #527
• Support for osquery 5.13.1 by @javuto in #528
• Add prometheus metrics to osctrl-tls by @zhuoyuan-liu in #522
• Cleanup and dependencies bump by @javuto in #532
• Cleanup of files and dependencies by @javuto in #533
• Check for postgres user and database before creating by @javuto in #535
• Distributed queries and carves do expire by @javuto in #536
• SQL query shown in query list by @javuto in #537
• Update username and other metadata from decorators by @javuto in #538
• Modal in osctrl-admin to add a new query to schedule by @javuto in #539
• Avoid replacing metadata values with the string mismatched by @javuto in #540
• Fix for metadata updates done wrong on mismatch by @javuto in #541
• Avoid spamming logs with unnecessary log entries for metadata mismatch by @javuto in #542
• Run queries and carves via osctrl-api with expiration by @javuto in #543
• Run queries and carves with expiration using osctrl-cli by @javuto in #544
• Delete and expire carves and queries via osctrl-api by @javuto in #545
• Using osctrl-api by osctrl-cli for expire/delete queries and carves by @javuto in #551
• Fix for osctrl-api context type mismatch by @zhuoyuan-liu in #550
• Elastic logger for osctrl-tls by @javuto in #552
• Dependencies update to prepare for release by @javuto in #553
• Add metrics for size of ingested data by @zhuoyuan-liu in #548
• Multiple changes to osctrl-api: Crash fix, show carve queries and better targets to list queries by @javuto in #554
• Dependencies after go mod tidy by @javuto in #555
• Preparing release 0.4.1 by @javuto in #556

New Contributors

• @saryani made their first contribution in #527
• @zhuoyuan-liu made their first contribution in #522

Full Changelog: v0.4.0...v0.4.1

0.4.0

🔖 Release 0.4.0

What's New

• Using RegisteredClaims in JWT to avoid deprecated code by @javuto in #503
• Refactor of osctrl-api to better handler management by @javuto in #507
• Update to OpenAPI yaml to reflect the osctrl-api refactor by @javuto in #508
• Refactor of osctrl-tls to organize handlers better by @javuto in #509
• Using only UUID to identify environment in osctrl-tls by @javuto in #510
• Better HTTP responses in osctrl-tls by @javuto in #511
• Get rid of warning when building docker dev environment by @javuto in #512
• Using only UUID to identify environment in osctrl-api by @javuto in #513
• Migrating native log to zerolog in osctrl-tls by @javuto in #514
• Migrating native log to zerolog in osctrl-api by @javuto in #516
• Migrating native log to zerolog in osctrl-admin by @javuto in #517
• Migrating native log to zerolog in osctrl-cli and other packages by @javuto in #518
• Migrating native log to zerolog in all remaining packages by @javuto in #519
• Dependencies update to prepare release by @javuto in #520
• Preparing release 0.4.0 by @javuto in #521

Full Changelog: v0.3.9...v0.4.0

0.3.9

🔖 Release 0.3.9

What's New

• Bump golang version to 1.23.0 by @javuto in #486
• Migration from gorilla mux to the native mux in osctrl-admin by @javuto in #487
• Keep path variable name consistent in osctrl-admin by @javuto in #488
• Fix to prevent nil DBLogger in osctrl-admin by @javuto in #489
• Migrating gorilla mux to native mux for osctrl-tls by @javuto in #490
• Migrating gorilla mux to native mux for osctrl-api by @javuto in #491
• Perform actions to enroll-remove nodes in osctrl-api by @javuto in #492
• Enroll actions in cli using the API by @javuto in #494
• Default connector for osctrl-cli is API and some fixes by @javuto in #496
• Bump actions/download-artifact from 4.1.2 to 4.1.7 in /.github/workflows in the github_actions group across 1 directory by @dependabot in #495
• Dependencies update to prepare release by @javuto in #497
• Adding command to Makefile to cleanup osctrl docker images by @javuto in #498
• Adding commands to extend/expire/rotate enroll and remove URLs by @javuto in #500
• Update OpenAPI yaml with the enroll/remove actions endpoints by @javuto in #501
• Preparing release 0.3.9 by @javuto in #502

Full Changelog: v0.3.8...v0.3.9

0.3.8

🔖 Release 0.3.8

What's New

• Logger for docker environment is set to db by @javuto in #454
• Display last 100 entries for status and result logs by @javuto in #455
• Using session key for docker dev osctrl-admin by @javuto in #456
• Bump to dependencies after release by @javuto in #457
• Add missing remove.sh & remove.ps1 from OSCTRL NGINX conf by @peterbogdan in #458
• Fix for enrollment one-liner using dpkg in darwin by @javuto in #460
• Changes to go.mod files and updated dependencies by @javuto in #461
• Having custom deb, rpm, pkg and msi packages to enroll nodes by @javuto in #462
• Rebuilding single services in docker environment by @javuto in #463
• Adding buttons to download secret, cert and flags by @javuto in #464
• Small changes to the enroll.html template by @javuto in #465
• Script to repack osquery DEB packages including osctrl files (flags, secret, cert) by @javuto in #467
• Script to repack osquery PKG packages including osctrl files (flags, secret, cert) by @javuto in #468
• Up-to-date OpenAPI 3.0.1 YAML for osctrl-api by @javuto in #473
• replicate logic used for admin to run queris on multiple UUIDs, Envs,… by @peterbogdan in #472
• Get enroll and remove values from API for an environment by @javuto in #475
• fix QsqueryQueryData Data type for query results api call by @peterbogdan in #474
• Setting database as default for osctrl-cli by @javuto in #476
• Oneliner for RPM linux gets osquery by architecture by @javuto in #477
• Adding tags and platforms by environment in osctrl-api by @javuto in #478
• Skip using underscore in DB JSON configuration file by @javuto in #481
• Keep templates and static directories updated by @javuto in #482
• Adding collection for the bruno API client by @javuto in #483
• Preparing release 0.3.8 by @javuto in #484
• Dependencies update before release by @javuto in #485

Full Changelog: v0.3.7...v0.3.8

0.3.7

🔖 Release 0.3.7

What's New

• Skip logging URL when upgrading with provision.sh by @javuto in #434
• Stop logging logs to cache to avoid collapsing the service by @javuto in #435
• Install golang depending on architecture by @javuto in #437
• Deprecating default environment and adding dashboard by @javuto in #441
• Updates to docker-compose to detect .env and certificates in Makefile by @javuto in #442
• Support for osquery 5.12.1 by @javuto in #443
• Dependencies update before new release by @javuto in #444
• Cleanup for default env code by @javuto in #445
• Adding eviction policy to redis to avoid OOM issues by @javuto in #446
• Removing vagrant environment files by @javuto in #447
• More dependencies update before new release by @javuto in #448
• Missing query results and osctrl-admin panics by @javuto in #449
• Add support for arm64 docker builds by @peterbogdan in #450
• Small changes to docker files and air configuration by @javuto in #451
• chore: bump version to 0.3.7 by @chenrui333 in #452
• Some references left to be bumped for new release by @javuto in #453

New Contributors

• @peterbogdan made their first contribution in #450
• @chenrui333 made their first contribution in #452

Full Changelog: v0.3.6...v0.3.7