seph
seph
We're hearing reports that the new macOS Sequoia beta is causing prompts about `Allow osquery to find devices on local networks` This would be a horrific customer experience, and we...
Needing to update https://github.com/osquery/osquery-python/blob/master/osquery/__init__.py#L7 is error prone. Probably the whole build system should be overhauled.
According to the [docs](https://documentation.mailgun.com/docs/mailgun/api-reference/openapi-final/tag/Events/) the Events API is deprecated in favor of the logs API. However, I don't see support in this gem for that. Any chance at getting it...
# Bug report There have been a handful of reports about duplicate events. This is meant as a rollup of these: * https://github.com/osquery/osquery/issues/4738 * https://github.com/osquery/osquery/issues/5277 * https://github.com/osquery/osquery/issues/5999 # Debugging Steps...
# Bug report The new m1 macs can install iOS and iPad apps. But, these don't appear in our apps table. I suspect this because they don't appear in the...
We have a report from a customer that the `certificates` isn't reporting dates quite right. I have this snippet from the customer ``` # openssl x509 -text -noout -in /etc/ssl/certs/kolide.pem...
## Problem The `unified_log` table is very slow. As I understand it, this is because of how enumerating oslog works. Back in #7598 we introduced this table, and the idea...
From [internal slack](https://onepassword.slack.com/archives/C01NMJH8ZEK/p1748612238688249) ``` [parallels@fedora-linux-38 Downloads]$ sudo rpm -i kolide-launcher.rpm [sudo] password for parallels: package launcher-kolide-k2-1.18.3-1.arm64 is intended for a different architecture [parallels@fedora-linux-38 Downloads]$ uname -a Linux fedora-linux-38 6.14.8-300.fc42.aarch64 #1...
About a year ago, we moved launcher from using the old Notary infrastructure to using the new TUF infrastructure -- https://github.com/kolide/launcher/issues/1577 We should start shutting down the old notary infra....
Ages ago, I built the `kolide_wmi` table to get at WMI data. It uses the WMI query interface, and actually putting it into use requires a lot of weird query...