It’s time for every other e-newsletter of What’s New in Sysdig in 2022! I’m answerable for the “What’s new in Sysdig” weblog for the month of July! Hi, I’m Tom Linkin, a Sr. Answers Engineer primarily based within the Poconos up in Pennsylvania. I joined the implausible staff of other people at Sysdig 9 months in the past and feature been serving to strengthen gross sales within the higher NYC area ever since. As cloud safety wishes proceed to conform, so does Sysdig, and I will’t wait so that you can see what we’ve in retailer for the long run!
This month’s highpoints come with the addition of CloudWatch Metric Streams to Sysdig Track. There have additionally been various updates to the more than a few parts within the Sysdig ecosystem.
Sysdig Track
Combine AWS CloudWatch metric streams
Sysdig Track now can ingest metrics immediately from Kinesis Firehose, permitting you to completely combine your whole present AWS provider metrics into Sysdig Track.
As well as, we’ve additionally launched 9 out-of-the-box dashboards and signals for the next AWS CloudWatch Metric Streams products and services:
- AWS ALB
- AWS EBS
- AWS ELB
- AWS Fargate
- AWS Lambda
- AWS RDS
- AWS S3
- AWS SQS
For more info on gathering AWS metrics, see this weblog.
Sysdig Safe
Keep tuned for stimulating new tendencies in Sysdig Safe within the subsequent version of What’s New.
This month, we’ve:
Falco regulations
v0.74.3 is the newest model. Listed below are some highlights of the adjustments from v0.74.3, which we coated in June.
Created the next regulations:
- GCP App Engine Firewall Rule Deleted
- GCP App Engine Firewall Rule Up to date
- GCP Create Cloud Serve as v2 No longer The usage of Newest Runtime
- GCP Create Cloud Serve as v2
- GCP Compute Firewall Rule Deleted
- GCP Compute Firewall Rule Up to date
- GCP Delete Compute VM Example
- GCP Replace Cloud Serve as v2
- Malicious Atmosphere Variable in Spawned Procedure
- nsenter Container Get away
Additional main points and the whole changelog can also be discovered on Sysdig documentation.
Sysdig Brokers
The most recent Sysdig Agent unencumber is v12.7.1.
Please discuss with our v12.7.1 Free up Notes for additional main points.
SDK, CLI, and gear
Sysdig CLI
v0.7.14 continues to be the newest unencumber. The directions on find out how to use the software and the discharge notes from earlier variations are to be had on the following hyperlink:
https://sysdiglabs.github.io/sysdig-platform-cli/
Python SDK
v0.16.4 is the brand new unencumber with some minor fixes and updates.
https://github.com/sysdiglabs/sysdig-sdk-python/releases/tag/v0.16.4
Terraform Supplier
v0.5.39 is the latest unencumber, which integrated a minor json repair.
Documentation – https://registry.terraform.io/suppliers/sysdiglabs/sysdig/newest/doctors
Github hyperlink – https://github.com/sysdiglabs/terraform-provider-sysdig
Terraform Modules
AWS Sysdig Safe for Cloud has a brand new unencumber! – v0.9.4 contains some minor fixes and new options
GCP Sysdig Safe for Cloud has now not modified and continues to be v0.9.0
Azure Sysdig Safe for Cloud has now not modified and continues to be v0.9.0
Notice: Please take a look at unencumber notes for possible breaking adjustments
Falco Visible Studio Code Extension
v0.1.0 remains to be the newest unencumber.
https://github.com/sysdiglabs/vscode-falco/releases/tag/v0.1.0
Sysdig Cloud Connector
Sysdig Cloud Connector has now not modified and stays at unencumber v0.16.11.
Take a look at the listing of adjustments to get complete main points.
Admission Controller
Sysdig Admission Controller has now not modified and continues to be v3.9.5.
Documentation – https://doctors.sysdig.com/en/doctors/set up/admission-controller-installation/
Runtime Vulnerability Scanner
The brand new vuln-runtime-scanner has been up to date to unencumber v1.2.0.
Documentation – https://doctors.sysdig.com/en/doctors/sysdig-secure/vulnerabilities/runtime
Sysdig CLI Scanner
Sysdig CLI Scanner binary has been up to date to v1.2.1.
Notice: In case you are the use of this binary for native scanning to your construction setting or your pipeline does now not robotically pull the newest binary, we suggest you replace. Apply the directions within the documentation to retrieve the newest binary. The documented steps paintings neatly in a pipeline too when your CI/CD pipelines can get admission to the Web. In reality, it’s easiest to suppose there’s at all times a brand new unencumber!
Documentation – https://doctors.sysdig.com/en/doctors/sysdig-secure/vulnerabilities/pipeline/
Symbol Analyzer
Sysdig Symbol analyzer has had a unencumber! – v0.1.18.
Host Analyzer
Sysdig Host Analyzer has had a unencumber! – v0.1.9.
Documentation: https://doctors.sysdig.com/en/doctors/set up/node-analyzer-multi-feature-installation/#node-analyzer-multi-feature-installation
Sysdig Safe Inline Scan for Github Movements
The most recent unencumber continues to be v3.4.0.
https://github.com/market/movements/sysdig-secure-inline-scan
Sysdig Safe Jenkins Plugin
There was a unencumber! The most recent model is now v2.1.16
https://plugins.jenkins.io/sysdig-secure/
Prometheus Integrations
There were a couple of releases within the Prometheus Integrations house for the reason that ultimate publish. An combination of adjustments is underneath.
Integrations:
- repair: Prometheus task of Kubernetes CoreDNS now not with the ability to get metrics on account of error in port endpoint
- feat: Added metric to kubelet task
- repair: Added php-fpm brand within the doctors
Dashboards and signals:
- feat: Added up to date “Time Sequence Utilization” dashboard template to the repo
- repair: AWS MetricStreams dashboard templates now not being displayed
- feat: Got rid of deprecated ‘OutOfDisk’ situation on Node Standing and Efficiency dashboard
- feat: Revealed alert templates for AWS MetricsStreams integrations:
- ALB, EBS, ELB, ECS-Fargate, Lambda, RDS, S3, SQS
- repair: Modified titles in panel of capability making plans dashboard to mirror best boxes’ useful resource utilization
- repair: Modified “sysdig_shares_count” in keeping with “kube_resources_requests” in all dashboard templates
- repair: Mounted minor typo in a MySQL alert identify
Exporter pictures:
- repair: Error in JMX exporter symbol.
- repair: Mounted port in Memcached exporter scratch symbol.
- repair: Safety updates in UBI pictures of all exporters:
- Apache:
- quay.io/sysdig/apache-exporter:v0.11.1-ubi
- quay.io/sysdig/apache-exporter:v0.11.1
- Elasticsearch:
- quay.io/sysdig/elasticsearch-exporter:v1.3.4-ubi
- quay.io/sysdig/elasticsearch-exporter:v1.3.4
- Grok:
- quay.io/sysdig/sysdig/grok-exporter:v1.0.4-ubi
- quay.io/sysdig/sysdig/grok-exporter:v1.0.4
- JMX:
- quay.io/sysdig/promcat-jmx-exporter:v0.17.3-ubi
- quay.io/sysdig/promcat-jmx-exporter:v0.17.3
- Memcached:
- quay.io/sysdig/memcached-exporter:v0.10.2-ubi
- quay.io/sysdig/memcached-exporter:v0.10.2
- MongoDB:
- quay.io/sysdig/mongodb-exporter:v0.11.9-ubi
- quay.io/sysdig/mongodb-exporter:v0.11.9
- MySQL:
- quay.io/sysdig/mysql-exporter:v0.14.1-ubi
- quay.io/sysdig/mysql-exporter:v0.14.1
- NGINX:
- quay.io/sysdig/nginx-exporter:v0.10.1-ubi
- quay.io/sysdig/nginx-exporter:v0.10.1
- Node exporter:
- quay.io/sysdig/node-exporter:v1.2.4-ubi
- quay.io/sysdig/node-exporter:v1.2.4
- NTP:
- quay.io/sysdig/ntp-exporter:v2.0.4-ubi
- quay.io/sysdig/ntp-exporter:v2.0.4
- PHP-FPM:
- quay.io/sysdig/php-fpm-exporter:v2.3.2-ubi
- quay.io/sysdig/php-fpm-exporter:v2.3.2
- PostgreSQL:
- quay.io/sysdig/postgresql-exporter:v0.10.8-ubi
- quay.io/sysdig/postgresql-exporter:v0.10.8
- Redis:
- quay.io/sysdig/redis-exporter:v1.43.1-ubi
- quay.io/sysdig/redis-exporter:v1.43.1
- Apache:
Sysdig On-Premise
The 5.1.2-2 unencumber is the newest for on-prem installs.
This unencumber provides strengthen for Openshift 4.10
The total unencumber notes can also be discovered right here: Sysdig Doctors or Github.
New site assets
Blogs
Webinars
Tradeshows
- July 26-27, AWS Strengthen 2022, Boston MA
- Aug. 6-11, Blackhat USA 2022, Las Vegas NV
- Oct. 10-12, ISC2, Las Vegas NV
- Oct. 11-13, Google Subsequent, San Francisco CA
- Oct. 24-28, Kubecon NA 2022, Detroit MI
- Nov. 28 – Dec. 2, AWS Reinvent, Las Vegas NV
Schooling
