Thibault "bui" Koechlin
9e1cfb18b9
Support console options
in console enroll
( #2760 )
...
* make dev.yaml has a valid/default console path
* simplify and make more consistent help message about console opts
* allow enroll to specify options to enable
* allow 'all' shortcut for --enable
lapi/papi: when receiving alerts, log and discard invalid addr/range (#2708 )
https://github.com/crowdsecurity/crowdsec/issues/2687
log "loading papi client" only if papi is enabled (#2762 )
Appsec hooks fixes (#2769 )
2024-01-23 17:52:37 +01:00
sabban
977d904b94
use Prometheus COnfig instead of Plugin
2024-01-22 18:44:59 +01:00
sabban
6508965192
typos
2024-01-19 23:22:47 +01:00
sabban
eeb3aade32
typo
2024-01-19 18:13:58 +01:00
sabban
98239eff31
fix for centos9
2024-01-19 18:00:07 +01:00
sabban
b0c0b5ee00
typo
2024-01-19 16:30:52 +01:00
sabban
cbb6359e10
typo
2024-01-19 16:19:27 +01:00
sabban
2eb513aef9
typo
2024-01-19 15:45:12 +01:00
sabban
89fd883466
try fix
2024-01-19 15:40:13 +01:00
sabban
094d845e11
fix 04_capi.bats to avoid //
2024-01-19 15:02:19 +01:00
mmetc
ce32fc019e
func tests improvements ( #2759 )
...
* faster reload test
* decode-jwt script
* replace 'netcat' requirement with python script
* fix lapi status test
2024-01-19 13:55:28 +01:00
mmetc
6ffb68322f
pkg/hubtest: split hubtest_item.go ( #2753 )
...
* split hubtest_item.go, update linter config
* extract loops to methods
* split installParser
* split installScenario
* split installPostoverflow
* split installAppsecRule
* generalize method installHubItems()
2024-01-18 11:09:14 +01:00
mmetc
fa8d5b6992
post-install: reduce verbosity ( #2751 )
...
* post install: avoid message "no such file or directory" when looking for logs
* post install: avoid info and warning messages when registering to capi
* lint (backtick)
2024-01-18 09:20:52 +01:00
mmetc
5d0d5ac9c9
CI: enable code complexity linters ( #2752 )
2024-01-17 21:57:45 +01:00
mmetc
d760b401e6
apiclient: split auth_key, auth_retry, auth_jwt ( #2743 )
2024-01-17 15:08:41 +01:00
Laurence Jones
4df4e5b3bf
[parser/scenarios] defer yaml file closure ( #2689 )
...
* Defer close the fd's
* Convert fatals into return with errors
2024-01-17 12:09:01 +01:00
AlteredCoder
70e8377c0d
Fix appsec evt send order ( #2749 )
2024-01-17 11:59:31 +01:00
Thibault "bui" Koechlin
685cda545b
fix the reload process for appsec ( #2750 )
2024-01-17 11:54:44 +01:00
Laurence Jones
f156f178cd
Update governance.yml ( #2748 )
2024-01-16 16:49:14 +00:00
AlteredCoder
a52f1b75ff
Don't close the body of the request ( #2747 )
2024-01-16 17:23:35 +01:00
blotus
421ef3bf9c
add cpu-profile flag ( #2723 )
2024-01-16 11:40:29 +01:00
mmetc
08794c5b6d
[appsec] waf tester ( #2746 )
2024-01-16 11:39:23 +01:00
AlteredCoder
a65223aa5b
Add original http request to hooks ( #2740 )
2024-01-16 10:33:44 +01:00
mmetc
24b5e8f100
Fix #2733 "cscli hang forever when i try to delete a decision" ( #2745 )
2024-01-16 09:16:21 +01:00
mmetc
c6e4762f28
apiserver: remove cached field isEnrolled ( #2744 )
...
not worth it just to avoid parsing a string twice
2024-01-16 09:14:33 +01:00
blotus
6acbcb0a33
Various appsec fixes ( #2742 )
2024-01-15 16:38:11 +01:00
blotus
e452dc80bd
ignore native modsec rules that were either pass or allow ( #2684 )
2024-01-15 15:12:02 +01:00
blotus
fd309134a2
log death reason of file reader if available ( #2721 )
2024-01-15 15:00:49 +01:00
mmetc
48f011dc1c
apiclient/apiserver: lint/2 ( #2741 )
2024-01-15 12:38:31 +01:00
mmetc
75d8ad9798
apiclient/apiserver: lint ( #2739 )
2024-01-15 11:44:38 +01:00
mmetc
03bb194d2c
Docker: allow setting BUILD_VERSION as a build argument ( #2736 )
...
* Docker: allow setting BUILD_VERSION as a build argument
* CI: don't attempt to publish docker images outside of crowdecurity org
* use go 1.21.6 for docker and windows too
2024-01-15 11:05:27 +01:00
Thibault "bui" Koechlin
6ca053ca67
fix #2720 #2719 ( #2724 )
...
* fix order of display of parsers
* add a --no-clean opt
2024-01-15 09:16:03 +01:00
mmetc
1e0bcedef5
Ignore missing console/context.yaml if not explicitly required by config.yaml ( #2726 )
2024-01-12 16:29:04 +01:00
mmetc
733f5e165b
csprofiles: fix default decision duration, lint ( #2703 )
...
* return nil with errors
* errors.Wrap -> fmt.Errorf
* var -> const
* fix default decision duration
* lint (whitespace)
2024-01-12 15:18:59 +01:00
mmetc
0ef5f20aa7
bin/crowdsec: avoid writing errors twice when log_media=stdout ( #2729 )
...
* bin/crowdsec: avoid writing errors twice when log_media=stdout
* lint
2024-01-12 14:44:09 +01:00
mmetc
fca8883cd9
cscli capi status -> message for missing credentials ( #2730 )
...
* cscli capi status -> message for missing credentials
* lint
2024-01-12 14:41:36 +01:00
Thibault "bui" Koechlin
896dfefcdf
[appsec] implement count transformation ( #2698 )
...
* implement count transfo
2024-01-12 14:30:08 +01:00
mmetc
6960419a2e
Remove redundant file check for capi_whitelists_path ( #2728 )
2024-01-12 14:17:01 +01:00
Thibault "bui" Koechlin
adba4e2a2f
fix multizone multivar ( #2727 )
2024-01-12 10:11:13 +01:00
mmetc
aa4f02c798
wizard: while installing, don't hide hub download/timeout errors ( #2710 )
...
* wizard: while installing, don't hide hub download/timeout errors
* lint, whitespace
2024-01-11 16:30:42 +01:00
mmetc
260f5a7992
pkg/cwhub: improve error messages ( #2712 )
...
* pkg/cwhub: improve error messages
* lint
2024-01-11 10:28:58 +01:00
mmetc
0f722916b8
use go 1.21.6 ( #2714 )
...
* use go 1.21.6
2024-01-11 09:40:51 +01:00
mmetc
a59ae61441
Makefile: use GO macro if set, to check for version ( #2706 )
2024-01-11 09:25:33 +01:00
mmetc
437a97510a
apiclient: handle 0-byte error response ( #2716 )
...
* apiclient: correctly handle 0-byte response
* lint
2024-01-10 12:00:22 +01:00
mmetc
f306d59016
logging: full timestamp with timezone in crowdsec.log ( #2707 )
...
RFC3339 = "2006-01-02T15:04:05Z07:00" (same as /var/log/syslog)
2024-01-08 21:20:25 +01:00
blotus
58f91dc951
update coraza ( #2705 )
2024-01-08 19:44:24 +01:00
AlteredCoder
bd47dac6a3
Fix #2697 ( #2702 )
...
* Print also sec lang rules in cscli inspect
2024-01-08 16:44:05 +01:00
blotus
5d5a1117e1
Send installed appsec rules as part of the scenarios on login ( #2704 )
2024-01-08 14:33:53 +01:00
Sebastien Blot
ecd1a8bfed
Revert "Send installed appsec rules as part of the scenarios on login"
...
This reverts commit f99f003a50
.
2024-01-08 10:54:39 +01:00
Sebastien Blot
f99f003a50
Send installed appsec rules as part of the scenarios on login
2024-01-08 10:54:07 +01:00