integrations-core icon indicating copy to clipboard operation
integrations-core copied to clipboard
verified publisher icon DataDog

DDS: Linux Audit Logs Updates

Open tirthrajchaudhari-crest opened this issue 6 months ago • 2 comments

What does this PR do?

  • Added support for SYSCALL logs
  • Updated the pipeline
  • Added system calls dashboard
  • Update README to include setup steps for audit rules

Review checklist (to be filled by reviewers)

  • [ ] Feature or bugfix MUST have appropriate tests (unit, integration, e2e)
  • [ ] Add the qa/skip-qa label if the PR doesn't need to be tested during QA.
  • [ ] If you need to backport this PR to another branch, you can add the backport/<branch-name> label to the PR and it will automatically open a backport PR once this one is merged

tirthrajchaudhari-crest avatar May 21 '25 12:05 tirthrajchaudhari-crest

Hey @rtrieu @buraizu, Both changes look good, but for now, we are proceeding with using a colon after the setup step statements.

tirthrajchaudhari-crest avatar May 22 '25 05:05 tirthrajchaudhari-crest

⚠️ Recommendation: Add qa/skip-qa label

This PR does not modify any files shipped with the agent.

To help streamline the release process, please consider adding the qa/skip-qa label if these changes do not require QA testing.

github-actions[bot] avatar Sep 19 '25 09:09 github-actions[bot]