Added persistence functionality for gzip sending buffer
Added Automatic activation of gzip sending
Improved behaviour when persistence fails
Upgraded DevoSDK dependency
Fixed console log encoding
Restructured python classes
Improved behaviour with non-utf8 characters
Decreased default size value for internal queues (Redis limitation, from 1GiB to 256MiB)
New persistence format/structure (compression in some cases)
Removed dmesg execution (It was invalid for docker execution)
Applied changes to make DCSDK compatible with MacOS
Upgrade DevoSDK dependency to version v5.4.0
Change internal queue management for protecting against OOMK
Extracted ModuleThread structure from PullerAbstract
Improve Controlled stop when both processes fails to instantiate
Improve Controlled stop when InputProcess is killed
Bug related to lost of collector_name , collector_id and job_id
Bug related queues and ValueError (edited)
Change internal queue management for protecting against OOMK
Extracted ModuleThread structure from PullerAbstract
Improve Controlled stop when both processes fails to instantiate
Improve Controlled stop when InputProcess is killed
Fixed error related a ValueError exception not well controlled
Fixed error related with loss of some values in internal mes
Bug Fix:
Changes in code to handle the guard-duty missing logs issue
sages
v1.10.0
Status
colour
Purple
title
NEW FEATURE
Improvements:
Implemented GuardDuty service, added puller set-up and puller for it
Upgrade
v1.8.2
Status
colour
Green
title
IMPROVEMENT
Improvements:
Upgraded DCSDK Docker base image updated to 1.2.0
Upgrade
v1.8.1
Status
colour
Red
title
BUG FIX
Bug Fixes:
Fix a bug when dealing with events that have no lastEventTimestamp present in the log_stream
Upgrade
v1.8.0
Status
colour
Green
title
IMPROVEMENT
Status
colour
Purple
title
NEW FEATURE
New Feature
Updated method to call all the log group name if log_group parameter is this '/' in the config
Improvements
Upgraded DCSDK from 1.9.2 to 1.10.2
Ensure special characters are properly sent to the platform
Changed log level to some messages from info to debug
Changed some wrong log messages
Upgraded some internal dependencies
Changed queue passed to setup instance constructor
Ability to validate collector setup and exit without pulling any data
Ability to store in the persistence the messages that couldn't be sent after the collector stopped
Ability to send messages from the persistence when the collector starts and before the puller begins working
Ensure special characters are properly sent to the platform
Upgrade
v1.7.1
Status
colour
Red
title
bug fixes
Fixed the way the collector handles milliseconds as the strptime function has been updated since 2021
Fixed the missing parameter in a method call
Recommended version
v1.6.0
Status
colour
Purple
title
NEW FEATURE
New features:
Added Cisco Umbrella new data source using SQS+S3
Added is_aws_service optional parameter in collector_definitions.yaml.
Added event_type_file_regex_patterns optional parameter to set a dict as: event_type -> regex_for_s3_file_key
Upgrade
v1.5.0
Status
colour
Green
title
IMPROVEMENT
Improvements
Upgraded [boto] libraries from 1.21.36 to 1.28.24
Upgraded DCSDK from 1.3.0 to 1.9.1
Upgrade
v1.4.1
Status
colour
Red
title
BUG FIX
Bug Fixes:
Fixed a bug that prevented the use of the Assumed Role authentication method.
Fixed a bug that prevented session renewal when using any of the Assume Authentication methods:
Assume Role
Cross Account
Upgrade
v1.4.0
Status
colour
Purple
title
NEW FEATURE
Status
colour
Green
title
IMPROVEMENT
Status
colour
Red
title
BUG FIX
New features:
CrossAccount authentication method is now available improving the way in which the credentials are shared when the collector is running in the Collector Service.
Improvements:
The audit-events-all service (type audits_api) has been enhanced to allow requesting events older than 500 days.
Bug Fixes:
Fixed a bug that raised a KeyError when the optional param event_type_processor_mapping was not defined running service-events-all service.
