v1.15.0
What's Changed
- Rename current_time column to now_ts to avoid Kolide import issue by @tstromberg in #346
- Set a time limit of 8s for query output by @tstromberg in #347
- fpr: elastic, rapid7, zwift by @tstromberg in #348
- fpr: snap, mutedeck, idea, Chrome exts by @tstromberg in #349
- pin to shas and upgrade actions workflows and osquery client by @jedsalazar in #350
- fpr: PSI, Arduino, BitDefender, Keybase, Cody, Elastic, Firefox by @tstromberg in #351
- massive fpr: Rapid7, Elastic, everything by @tstromberg in #352
- Add TTP details from https://www.sentinelone.com/blog/backdoor-activa… by @tstromberg in #353
- fpr: Elastic Defend, gcloud, Warp, etc by @tstromberg in #354
- fpr: Elastic, IR, Velociraptor, BitDefender, incus, Adguard by @tstromberg in #355
- Ignore taint code 4096 (out-of-tree driver) by @tstromberg in #356
- fpr: Incus, Firefox, mbim, networkd, incus by @tstromberg in #357
- fpr: Docker Desktop, code-oss, incus, geoclue, etc by @tstromberg in #358
- fpr: snapd, cups, ubuntu, etc by @tstromberg in #359
- Allow Kandji to do weird things with expect by @tstromberg in #361
- Performance tuning, mark some Linux queries as 'extra' by @tstromberg in #362
- Add Harden Runner audit configs by @jedsalazar in #360
- FPR: Docker, Yubikey, Aerospace, WhatsApp, nuclei, etc. by @tstromberg in #363
Full Changelog: v1.14.1...v1.15.0
Contributors
tstromberg and jedsalazar