Melissa Kilby
Melissa Kilby
Great, thank you! July 19th would be best.
Updates July 19, 2023: Here are the meeting notes https://docs.google.com/document/d/1TkmMyXJABC66NfYmivnh7z8Y_vpq9f9foaOuDVQS_Lo/edit#heading=h.5hquk4f1dn95, thanks @catblade! Action Items on Falco side (ETA before Falco 0.36 release ~Sep 2023): - Create a test matrix, similar...
Updates Dec 19, 2023: - New dedicated repo is up https://github.com/falcosecurity/cncf-green-review-testing/. - Checkout the open issues https://github.com/falcosecurity/cncf-green-review-testing/issues for tracking going forward. Expected ETA for a complete v1 to be "live"...
This seems very useful, are we on track to allocate time for review and feature finalization? Thank you! @leogr?
No worries even with a direct rebase all previous approvals are removed. Leo and Andrea will approve tomorrow Europe time.
Update: It's on the roadmap for Falco 0.36 alongside exposing tags based filtering through `falco.yaml` as we are introducing a new rules maturity framework.
Since Falco 0.35.0 all generic syscalls are exposed to Falco, simply write a Falco rule, including `init_module`, and `finit_module` and `mknod` and many more. Please note Andrea's comment around them...
@MagpieRYL would you be interested in contributing Falco rules https://github.com/falcosecurity/rules? We need more robust rules for container escapes in general.
@Happy-Dude please see some initial progress on adding native support for resource utilization metrics https://github.com/falcosecurity/falco/pull/2333. Would you have additional thoughts on the metrics collected / planned / still missing that...
@Happy-Dude published a public HackMD proposing a Test Matrix https://hackmd.io/-nwsFyySTEKsjmjGHCyPRg?view using the newly introduced `base_syscalls` config setting which will be released in Falco 0.35, see also https://github.com/falcosecurity/falco/issues/2433. Additional note: Creating...