ยซ Changelog History


OSQuery v5.4.0 Release Notes

  • Git Commits

    Representing commits from 15 contributors! Thank you all.

    ๐Ÿ†• New Features

    • ๐Ÿ–จ We're extending macOS Endpoint Security to include File Integrity monitoring. Check out the new es_process_file_events table. (#7579)
    • โž• Add Docker build scripts and configuration (#7619)

    ๐Ÿ—„ Deprecation Notices

    • Prevent CLI_FLAGs to be set via config (#7561)
    • โœ‚ Remove the lldp_neighbors table (#7664)

    Table Changes

    • ๐Ÿ–จ New Table: es_process_file_events for macOS Endpoint Security based FIM (#7579)
    • ๐Ÿ†• New Table: password_policy table for macOS (#7594)
    • โšก๏ธ New Table: windows_update_history (#7407)
    • ๐Ÿง Add memory_available to linux memory_info table (#7669)
    • ๐Ÿง Port the cpu_info table to linux (#7499)
    • โœ‚ Remove the lldp_neighbors table (#7664)
    • โšก๏ธ Update deb_packages table to not sisplay arch info in the package name (#7638)
    • Update hardware_model in the system_info table on Apple M1 machines to report correctly (#7662)
    • Update shared_resources table to add type names, fix type/maximum_allowed handling (#7645)

    Under the Hood improvements

    • ๐Ÿ Expand env vars before trying to enumerate crashes in windows_crashes table (#7391)
    • Implement a split and trim function using std::string_view (#7636)
    • ๐Ÿ‘Œ Improve scheduled query denylisting and scheduler shutdown (#7492)
    • Prevent CLI_FLAGs to be set via config (#7561)
    • โœ‚ Remove unnecessary string copy (#7625)

    ๐Ÿ› Bug Fixes

    • โž• Add linwin to list of supported PLATFORM_DIRS (#7646)
    • ๐Ÿ›  Fix AWS certificate verification failing on all services (#7652)
    • ๐Ÿ›  Fix MBCS support on Windows (#7593)
    • ๐Ÿ›  Fix local_timezone column in the time table on Windows (#7656)
    • ๐Ÿ›  Fix system_info table to support unicode on Windows (#7626)
    • ๐Ÿ›  Fix multiple Yara leaks (#7615)
    • Fix std::bad_alloc on pci_devices on Apple Silicon macs (#7648)
    • ๐Ÿ›  Fix tables spec files to specify linux and not posix (#7644)
    • ๐Ÿ›  Fix thrift server shutting down when dropping privileges (#7639)

    ๐Ÿ“š Documentation

    • ๐Ÿ”„ CHANGELOG 5.3.0 (#7575)
    • ๐Ÿ“š Exclude spec/example.table when generating documentation (#7647)
    • ๐Ÿ›  Fix a UUID typo in the disk_encryption table (#7608)
    • ๐Ÿ›  Fix spelling of the word "owned" (#7630)
    • ๐Ÿ›  Fix typo in FIM docs for Windows (#7676)
    • ๐Ÿš€ Update the "new release" issue template (#7607)
    • ๐Ÿ”Œ clarify browser_plugins table is referencing basically unsupported CNPAPI tech (#7651)

    ๐Ÿ— Build

    • โž• Add an option to build with the leak sanitizer (#7609)
    • ๐Ÿ›  Fix check for PIE support (#7234)
    • โฑ Fix SchedulerTests.test_scheduler_drift_accumulation flakyness (#7613)
    • ๐Ÿ‘Œ Improve config parsing and osqueryfuzz-config performance (#7635)
    • ๐ŸŽ‰ Initialize users and groups services on all tests that need them (#7620)
    • โšก๏ธ ci: Update osquery-packaging commit to the latest one (#7667)
    • cmake: Add an option to enable or disable using ccache (#7671)
    • โšก๏ธ libs: Update OpenSSL to version 1.1.1o (#7629)
    • โšก๏ธ libs: Update OpenSSL to version 1.1.1q (#7674)
    • โšก๏ธ libs: Update libarchive to version 3.6.1 (#7654)
    • โšก๏ธ libs: Update sqlite to version 3.38.5 (#7628)