chore(deps): update dependency cilium/tetragon to v1.1.0

[uniget-bot]

This PR contains the following updates:

Package	Update	Change
cilium/tetragon	minor	1.0.3 -> 1.1.0

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

cilium/tetragon (cilium/tetragon)

v1.1.0: release

Compare Source

Release notes

Breaking Changes:

• API: Remove deprecated pod.labels field. Use pod.pod_labels instead. (https://github.com/cilium/tetragon/pull/1848) by @​michi-covalent

• TracingPolicy: Replace symbol field (string) with symbols (array of strings) in uprobe spec. If using policies with uprobes, you need to replace the symbol field. (https://github.com/cilium/tetragon/pull/1975) by @​olsajiri

• TracingPolicy: Rename killer to enforcer. If using policies with killers, you need to replace killers with enforcers and action: NotifyKiller with NotifyEnforcer. (https://github.com/cilium/tetragon/pull/2117) by @​olsajiri

• Fix metrics related to monitoring BPF maps and userspace caches. Remove tetragon_map_drops_total (it was duplicating tetragon_errors_total{type="process_cache_evicted"}). Remove tetragon_map_in_use_gauge{map="eventcache"} (event cache is not a BPF map). Replace tetragon_map_in_use_gauge{map="processLru"} with tetragon_process_cache_size (process cache is not a BPF map). (https://github.com/cilium/tetragon/pull/1950) by @​sadath-12

• Support user mode stacktraces in events. To enable this feature, set userStackTrace: true in the policy Post action. (https://github.com/cilium/tetragon/pull/2175) by @​anfedotoff

  To distinguish different stacktraces, kernel stacktraces are now enabled with kernelStackTrace policy field (renamed from stackTrace), and posted in kernel_stack_trace event field (renamed from stack_trace).

Major Changes:

• Tetragon oci hook setup (https://github.com/cilium/tetragon/pull/1842) by @​kkourt
• tetragon: detect execve of anonymous binaries (https://github.com/cilium/tetragon/pull/499) by @​tixxdz
• Introduce an export filter type for process capabilities. (https://github.com/cilium/tetragon/pull/2107) by @​willfindlay
• Introduce redaction filters for censoring sensitive string data in process events. (https://github.com/cilium/tetragon/pull/2243) by @​willfindlay
• tracing: add multi-link uprobe support (https://github.com/cilium/tetragon/pull/1914) by @​olsajiri
• policyfilter: add a containerSelector that allows filtering policies by container name (https://github.com/cilium/tetragon/pull/2231) by @​BonySmoke

Bugfixes:

• Fix a segmentation fault related to filtering out pid information with field filters (https://github.com/cilium/tetragon/pull/1700) by @​willfindlay
• Fix a number of segmentation faults related to field filters. (https://github.com/cilium/tetragon/pull/1712) by @​willfindlay
• pkg/option: add metrics-label-filter flags (https://github.com/cilium/tetragon/pull/1678) by @​Jack-R-lantern
• Do not add a new entry in the execve_map during clone events that we cannot find our parent. Additionally, return early on kernel threads. (https://github.com/cilium/tetragon/pull/1708) by @​tpapagian
• Rework the matchBinaries selector implementation (https://github.com/cilium/tetragon/pull/1731) by @​mtardy
• Fix a few bugs related to field filter configuration and significantly improve performance of field filters. (https://github.com/cilium/tetragon/pull/1763) by @​willfindlay
• Fix a few bugs related to field filter configuration and significantly improve performance of field filters. (https://github.com/cilium/tetragon/pull/1762) by @​willfindlay
• Fix an issue that caused Tetragon to hang when it encounters an error early on in its init phase. (https://github.com/cilium/tetragon/pull/1770) by @​willfindlay
• Adds validation for sock and skb types (https://github.com/cilium/tetragon/pull/1807) by @​kevsecurity
• Fixes prefix and postfix matching for strings longer than the prefix or postfix maximum length (https://github.com/cilium/tetragon/pull/1806) by @​kevsecurity
• helm: Fix templating securityContext and tolerations (https://github.com/cilium/tetragon/pull/1837) by @​lambdanis
• pkg/kernels: Fix large patch numbers (https://github.com/cilium/tetragon/pull/1870) by @​tpapagian
• Fix a regression related to field filters that could cause top-level information to be missing from events. (https://github.com/cilium/tetragon/pull/1882) by @​willfindlay
• bpf: unit tests and fixes for prepend_name function (https://github.com/cilium/tetragon/pull/1902) by @​mtardy
• metrics: Do not return when we cannot find a _stats map https://github.com/cilium/tetragon/pull/19499) by @​tpapagian
• bpf: read and copy proc exe at execve for matchBinaries (https://github.com/cilium/tetragon/pull/1926) by @​mtardy
• Dockerfile: bump bpftool revision to 7.3.0 (https://github.com/cilium/tetragon/pull/1972) by @​mtardy
• Fix a hang when the event exporter fails to start. (https://github.com/cilium/tetragon/pull/2119) by @​willfindlay
• tetra: avoid panic in the decoder (https://github.com/cilium/tetragon/pull/2116) by @​kkourt
• Set events node_name field to the hostname in the standalone (non-k8s) mode. (https://github.com/cilium/tetragon/pull/2123) by @​lambdanis
• policyfilter: fix issue in container fs scanning under cri-o (https://github.com/cilium/tetragon/pull/2188) by @​kkourt
• metrics: Remove pod from the queue after deleting metrics (https://github.com/cilium/tetragon/pull/2287) by @​lambdanis
• helm: Fix name and selector in operator ServiceMonitor (https://github.com/cilium/tetragon/pull/2371) by @​lambdanis

Minor Changes:

• Add a metric to provide missed events per type (https://github.com/cilium/tetragon/pull/1674) by @​tpapagian

• tetragon: factor kprobes (https://github.com/cilium/tetragon/pull/1685) by @​olsajiri

• tetragon: namespace checks (https://github.com/cilium/tetragon/pull/1627) by @​tixxdz

• tetragon: save tetragon pid into pidfile (https://github.com/cilium/tetragon/pull/1743) by @​tixxdz

• operator: Don't log an error if the PodInfo resource already exists. (https://github.com/cilium/tetragon/pull/1777) by @​michi-covalent

• Increases the character limit for prefix matches from 128 to 256. (https://github.com/cilium/tetragon/pull/1779) by @​kevsecurity

• tetragon: Assorted fixes (https://github.com/cilium/tetragon/pull/1781) by @​olsajiri

• policylibrary: add a catch all for setuid root and suid execution (https://github.com/cilium/tetragon/pull/1706) by @​tixxdz

• tetragon: get rid of some programs (https://github.com/cilium/tetragon/pull/1783) by @​olsajiri

• Misc Helm updates (https://github.com/cilium/tetragon/pull/1814) by @​lambdanis

• Helm: Added various configuration options for the Tetragon Operator Deployment (https://github.com/cilium/tetragon/pull/1817) by @​PhilipSchmid

• Add Prefix and NotPrefix operators to matchBinaries (https://github.com/cilium/tetragon/pull/1732) by @​mtardy

• Add a Kubernetes service exposing Tetragon Operator metrics. Make the operator metrics port configurable via Helm values and change the default to 2113. (https://github.com/cilium/tetragon/pull/1797) by @​hungran

• helm: add servicemonitor for operator (https://github.com/cilium/tetragon/pull/1836) by @​hungran

• tetragon: Detect large program with feature check (https://github.com/cilium/tetragon/pull/1833) by @​olsajiri

• tetragon: Add LT/GT oerator checks (https://github.com/cilium/tetragon/pull/1863) by @​olsajiri

• tetragon: Add support to match 32 bit syscalls (https://github.com/cilium/tetragon/pull/1816) by @​olsajiri

• tetragon: Move return filter to kernel (https://github.com/cilium/tetragon/pull/1773) by @​olsajiri

• tetragon: Detect and use disassociate_ctty as exit probe if needed (https://github.com/cilium/tetragon/pull/1853) by @​olsajiri

• tetragon: Use cilium/ebpf detection (https://github.com/cilium/tetragon/pull/1904) by @​olsajiri

• tetragon: Small filter fixes (https://github.com/cilium/tetragon/pull/1891) by @​olsajiri

• api:events: add message field to inform users what is happening (https://github.com/cilium/tetragon/pull/1940) by @​tixxdz

• tetragon: detect if binary execution raised process privileges (https://github.com/cilium/tetragon/pull/1786) by @​tixxdz

• Add rateLimitScope to control what rateLimit applies to. (https://github.com/cilium/tetragon/pull/1962) by @​kevsecurity

• Update tetragon_errors_total metric to not count event cache retries and errors. Add tetragon_event_cache_retries_total and tetragon_event_cache_parent_info_errors_total metrics. (https://github.com/cilium/tetragon/pull/1923) by @​sadath-12

• tetra: Add event filter based on tracing policy name (https://github.com/cilium/tetragon/pull/1867) by @​ioandr

• killer sensor: add fmod_ret support (https://github.com/cilium/tetragon/pull/1953) by @​kkourt

• tetragon: run Tetragon without access to CRD (https://github.com/cilium/tetragon/pull/1931) by @​aohoyd

• helm: Add tetragonOperator.enabled flag to the chart (https://github.com/cilium/tetragon/pull/2004) by @​aohoyd

• tetragon: Add support for uprobe arguments (https://github.com/cilium/tetragon/pull/1978) by @​olsajiri

• tetra: add a probe command to probe BPF features (https://github.com/cilium/tetragon/pull/2017) by @​mtardy

• tetragon: Harden loader sensor (https://github.com/cilium/tetragon/pull/2024) by @​olsajiri

• bugtool: fetch gops pprof heap (https://github.com/cilium/tetragon/pull/2007) by @​tixxdz

• tetragon: Add support to use security_ functions in killer https://github.com/cilium/tetragon/pull/20022) by @​olsajiri

• validation: improve error message when failing to load a TracingPolicy (https://github.com/cilium/tetragon/pull/2031) by @​christian-2

• policylibrary: consolidate privileges raising operations into privileges-raise.yaml single policy (https://github.com/cilium/tetragon/pull/1957) by @​tixxdz

• Extend string matching to strings of length 4096 characters (increased from 144 characters). (https://github.com/cilium/tetragon/pull/2069) by @​kevsecurity

• tetragon: Factor uprobe sensor setup (https://github.com/cilium/tetragon/pull/2085) by @​olsajiri

• Rename tetragon_policyflter_metrics_total metric to tetragon_policyfilter_metrics_total (fix a typo). (https://github.com/cilium/tetragon/pull/2096) by @​mtardy

• tetragon: extract linux_binprm member using CO:RE (https://github.com/cilium/tetragon/pull/1986) by @​dwindsor

• killer: assorted fixes (https://github.com/cilium/tetragon/pull/2058) by @​olsajiri

• policy pod-label filters: allow for namespace filtering using k8s:io.kubernetes.pod.namespace (https://github.com/cilium/tetragon/pull/1952) by @​sadath-12

• Parse kthreads during /proc scanning (https://github.com/cilium/tetragon/pull/2089) by @​tpapagian

• pkg/sensors: expose policy status through metrics and tetra (https://github.com/cilium/tetragon/pull/2090) by @​mtardy

• Fail with an error when the event exporter fails to start. (https://github.com/cilium/tetragon/pull/2127) by @​willfindlay

• tetragon:trivial: create run dir early to avoid errors (https://github.com/cilium/tetragon/pull/2148) by @​tixxdz

• tetragon:tarball: docker oci tarball fix (https://github.com/cilium/tetragon/pull/2161) by @​tixxdz

• Add support for data_loc char buffers. (https://github.com/cilium/tetragon/pull/2168) by @​kevsecurity

• Metrics with known labels values are initialized to 0 on startup. (https://github.com/cilium/tetragon/pull/2162) by @​lambdanis

  This helps to ensure stable resources usage and metrics queries. This also involves changes in several metrics labels:

  • error_type label on tetragon_handler_errors_total metric is either "unknown_opcode" or "event_handler_failed" instead of the Go type of the error
  • event_type label on tetragon_event_cache*_errors_total metrics is one of the values defined in Tetragon API (tetragon.EventType) instead of the Go type of the event
  • error label on tetragon_event_cache_errors_total metric is "nil_process_pid"
  • error label is removed from tetragon_policyfilter_metrics_total metric

• Allow for the operator to forcefully update CRDs regardless of the version (https://github.com/cilium/tetragon/pull/2023) by @​aohoyd

• Provide minimal support for struct net_device (https://github.com/cilium/tetragon/pull/2196) by @​kevsecurity

• Tracing: add support for file permissions (https://github.com/cilium/tetragon/pull/2222) by @​Jianlin-lv

• tetragon: assorted fixes (https://github.com/cilium/tetragon/pull/2264) by @​olsajiri

• tetragon: log current security context if any at startup (https://github.com/cilium/tetragon/pull/2149) by @​tixxdz

• tracing-policies: support tags to categorize events (https://github.com/cilium/tetragon/pull/2008) by @​tixxdz

• cves: add detection of XZ backdoor in OpenSSH (https://github.com/cilium/tetragon/pull/2276) by @​tixxdz

• tracingpolicy: comment message field for older versions support (https://github.com/cilium/tetragon/pull/2281) by @​tixxdz

• tetragon: store caps during fork (https://github.com/cilium/tetragon/pull/2275) by @​tixxdz

• Metrics for map and cache sizes are improved: (https://github.com/cilium/tetragon/pull/2291) by @​lambdanis

  • tetragon_map_in_use_gauge metric is renamed to tetragon_map_entries and doesn't have total label anymore
  • New tetragon_map_capacity metric exposes the BPF maps capacity
  • New tetragon_event_cache_entries metric measures the event cache size
  • New tetragon_process_cache_size metric measures the process cache size
  • New tetragon_process_cache_capacity metric exposes the process cache capacity

• Filter out bash kubernetes healthchecks (https://github.com/cilium/tetragon/pull/2262) by @​alexeysofin

• Add export metrics (https://github.com/cilium/tetragon/pull/2340) by @​chancez

• Support installing CRDs as part of Tetragon Helm chart by setting crds.installMethod=helm value. tetragonOperator.skipCRDCreation value is deprecated - if set to true, use crds.installMethod=none instead. (https://github.com/cilium/tetragon/pull/2375) by @​lambdanis

CI Changes:

• renovate: let renovate update gops in Dockerfile (https://github.com/cilium/tetragon/pull/1713) by @​mtardy
• renovate: enable stable support for v1.0 and fixes (https://github.com/cilium/tetragon/pull/1742) by @​mtardy
• Avoid requiring the latest Go toolchain patch version to build (https://github.com/cilium/tetragon/pull/1748) by @​mtardy
• renovate: try to fix Go updates for stable branches (https://github.com/cilium/tetragon/pull/1752) by @​mtardy
• renovate: fix allowed version for Go upgrades in 1.0 branch (https://github.com/cilium/tetragon/pull/1756) by @​mtardy
• renovate: add digest in Golang Docker image in Makefile.cli (https://github.com/cilium/tetragon/pull/1758) by @​mtardy
• e2e: wait for tracing policy fixes (https://github.com/cilium/tetragon/pull/1740) by @​kkourt
• fork-tester: remove connect to 8.8.8.8 (https://github.com/cilium/tetragon/pull/1811) by @​kkourt
• e2e: Fix logger in e2e tests (https://github.com/cilium/tetragon/pull/1785) by @​tpapagian
• ci: replace buildjet arm64 runners with actuated ones (https://github.com/cilium/tetragon/pull/1682) by @​mtardy
• workflows: add independent go-version for setup-go actions (https://github.com/cilium/tetragon/pull/1852) by @​mtardy
• workflow: fix PR link checker to check local branch links (https://github.com/cilium/tetragon/pull/1865) by @​mtardy
• ci: fix tetragon go test ci job (https://github.com/cilium/tetragon/pull/1890) by @​tixxdz
• workflows/vmtests: delete artifacts if run was successful (https://github.com/cilium/tetragon/pull/1925) by @​mtardy
• Revert "chore(deps): update all github action artifacts to v4" (https://github.com/cilium/tetragon/pull/1942) by @​mtardy
• workflows: bump bom version for race condition fix (https://github.com/cilium/tetragon/pull/1944) by @​mtardy
• killer sensor: improve testing (https://github.com/cilium/tetragon/pull/1948) by @​kkourt
• Tracepoint tests: Fix comm signedness and length check (https://github.com/cilium/tetragon/pull/1963) by @​kevsecurity
• workflows: add apt-get update before installs (https://github.com/cilium/tetragon/pull/1970) by @​mtardy
• ci: cross compile the arm tarball for tests (https://github.com/cilium/tetragon/pull/1958) by @​tixxdz
• feat: validate crd versions (https://github.com/cilium/tetragon/pull/1919) by @​sadath-12
• workflows: use defined actions/checkout version in validate-crd.yaml (https://github.com/cilium/tetragon/pull/2045) by @​mtardy
• workflows: fix validate CRD by fetching all git repo history (https://github.com/cilium/tetragon/pull/2066) by @​mtardy
• renovate: include all Dockerfiles, even the one with prefix (https://github.com/cilium/tetragon/pull/2108) by @​mtardy
• renovate: match all Makefiles (https://github.com/cilium/tetragon/pull/2126) by @​willfindlay
• renovate: allow auto-merge kernel bumps on LVH (https://github.com/cilium/tetragon/pull/2140) by @​mtardy
• ci: only check docs on PR to main (https://github.com/cilium/tetragon/pull/2154) by @​willfindlay
• ci: Add rhel8 kernel in vmtests (https://github.com/cilium/tetragon/pull/2184) by @​tpapagian
• workflows: check only updated docs links in PRs (https://github.com/cilium/tetragon/pull/2259) by @​mtardy
• ci/static-checks: ensure no binary files are checked in (https://github.com/cilium/tetragon/pull/2174) by @​willfindlay
• Makefile: fix a missing 'vendor' target in oci-hook (https://github.com/cilium/tetragon/pull/2283) by @​mtardy
• validate-crd: use SHAs for diff (https://github.com/cilium/tetragon/pull/2319) by @​kkourt
• e2e: fix bugs + dump operator logs (https://github.com/cilium/tetragon/pull/2266) by @​willfindlay
• helm: use renovate to update dockerfiles in the Makefile (https://github.com/cilium/tetragon/pull/2350) by @​mtardy
• contrib: use renovate to update yq image (https://github.com/cilium/tetragon/pull/2352) by @​mtardy
• renovate: run the Makefile after upgrading image deps (https://github.com/cilium/tetragon/pull/2364) by @​mtardy
• Tetragon e2e Test: Run e2e tests in parallel on multiple runners (https://github.com/cilium/tetragon/pull/2354) by @​Trung-DV

Documentation changes:

• docs: update tetragon.io title (https://github.com/cilium/tetragon/pull/1709) by @​hacktivist123
• docs: remove mention of obsolete map_linux.go (https://github.com/cilium/tetragon/pull/1734) by @​lmb
• Added some additional resources (https://github.com/cilium/tetragon/pull/1754) by @​saintdle
• chore: site description update (https://github.com/cilium/tetragon/pull/1760) by @​hacktivist123
• doc: Clarified Docker Desktop on MacOS FAQ (https://github.com/cilium/tetragon/pull/1780) by @​PhilipSchmid
• Update install-k8s.md (https://github.com/cilium/tetragon/pull/1753) by @​lizrice
• Add recent resources to docs + fix godoc (https://github.com/cilium/tetragon/pull/1784) by @​lambdanis
• docs: bump Docsy to v0.8.0, enable search, enhance highlighting, simplify theme customizations and more fixes (https://github.com/cilium/tetragon/pull/1829) by @​mtardy
• docs: add privacy-aware GoatCounter analytics (https://github.com/cilium/tetragon/pull/1873) by @​mtardy
• docs: improve tetragon option reference page (https://github.com/cilium/tetragon/pull/1932) by @​mtardy
• Improve rate limit documentation (https://github.com/cilium/tetragon/pull/1961) by @​kevsecurity
• docs: fix typos, fix k8s install guide for zsh and update Cilium SW demo (https://github.com/cilium/tetragon/pull/1965) by @​ioandr
• docs: fix invalid site param in hugo.toml (https://github.com/cilium/tetragon/pull/1973) by @​mtardy
• doc: added uprobe info (https://github.com/cilium/tetragon/pull/1945) by @​sadath-12
• docs: improve contribution guide and add a running test page (https://github.com/cilium/tetragon/pull/1980) by @​mtardy
• docs: welcome all contributions and add a docs contrib guide (https://github.com/cilium/tetragon/pull/1990) by @​mtardy
• docs: fix property naming (https://github.com/cilium/tetragon/pull/2006) by @​rpahli
• docs: link checker config for docs contributor guide (https://github.com/cilium/tetragon/pull/2000) by @​mtardy
• Fix typo on TracingPolicy Selectors Stack Traces documentation (https://github.com/cilium/tetragon/pull/2059) by @​h3x-eilidh
• docs: remove tutorials section and move its content under appropriate sections (https://github.com/cilium/tetragon/pull/2097) by @​mtardy
• README: remove the link to the tutorials in docs (https://github.com/cilium/tetragon/pull/2104) by @​mtardy
• docs:policylibrary: more examples on privileges escalation and execution (https://github.com/cilium/tetragon/pull/2067) by @​tixxdz
• Update enforcement.md (https://github.com/cilium/tetragon/pull/2084) by @​next-ramses
• docs: tetragon troubleshoot improve (https://github.com/cilium/tetragon/pull/2115) by @​janvi01
• docs: Privileged execution - use nginx instead of test-pod image (https://github.com/cilium/tetragon/pull/2125) by @​janvi01
• docs: getting-started k8s fix kind create a cluster (https://github.com/cilium/tetragon/pull/2158) by @​mtardy
• Generate metrics reference docs (https://github.com/cilium/tetragon/pull/2164) by @​lambdanis
• README: add a link to the community call (https://github.com/cilium/tetragon/pull/2179) by @​mtardy
• docs: add FAQ entry about kernel config and tetra probe (https://github.com/cilium/tetragon/pull/2191) by @​mtardy
• docs: Fix cosign instructions (https://github.com/cilium/tetragon/pull/2232) by @​lambdanis
• documentation: more detailed description re FollowFD/UnfollowFD (https://github.com/cilium/tetragon/pull/2228) by @​christian-2
• docs: document export filters and fieldfilters (https://github.com/cilium/tetragon/pull/2249) by @​willfindlay
• docs: fix contribution-guide docker run (https://github.com/cilium/tetragon/pull/2310) by @​yukinakanaka
• docs: update demo app url (https://github.com/cilium/tetragon/pull/2311) by @​yukinakanaka
• Update bug out tar file (https://github.com/cilium/tetragon/pull/2316) by @​strongjz
• Update events.md (https://github.com/cilium/tetragon/pull/2318) by @​zazathomas
• docs: fix filename-access example (https://github.com/cilium/tetragon/pull/2335) by @​yukinakanaka
• docs: explicitly state which regex flavour is used for redaction (https://github.com/cilium/tetragon/pull/2377) by @​f1ko
• docs: update the latest version from the docs with renovate (https://github.com/cilium/tetragon/pull/2353) by @​mtardy

Misc Changes:

• starting 1.1 development (https://github.com/cilium/tetragon/pull/1699) by @​kkourt
• pkg/bench: disable BPF stats collection at the end of execution (https://github.com/cilium/tetragon/pull/1735) by @​lmb
• Replace the use of viper.bind flags with variables binding (https://github.com/cilium/tetragon/pull/1119) by @​Jack-R-lantern
• Makefile: also use JOBS for test-compile (https://github.com/cilium/tetragon/pull/1730) by @​kkourt
• Add arm64 support for the tarball via cross-compilation on amd64. (https://github.com/cilium/tetragon/pull/1805) by @​mtardy
• helm: Don't mount /var/lib/tetragon/metadata (https://github.com/cilium/tetragon/pull/1818) by @​lambdanis
• linters: add gosimple and fix corresponding alerts (https://github.com/cilium/tetragon/pull/1813) by @​mtardy
• tracingpolicy: add a stack traces example (https://github.com/cilium/tetragon/pull/1838) by @​mtardy
• linters: add makezero and fix a related bug (https://github.com/cilium/tetragon/pull/1832) by @​mtardy
• Move Helm chart into tetragon directory (https://github.com/cilium/tetragon/pull/1845) by @​lambdanis
• linters: add dupword detecting stutters in comments and strings (https://github.com/cilium/tetragon/pull/1843) by @​mtardy
• testutils: Fix RepoRootPath when Tetragon is vendored (https://github.com/cilium/tetragon/pull/1871) by @​tpapagian
• helm: Add extensions templates (https://github.com/cilium/tetragon/pull/1846) by @​lambdanis
• Rename a function in e2e test helpers. (https://github.com/cilium/tetragon/pull/1915) by @​sadath-12
• Improve local k8s developer experience (https://github.com/cilium/tetragon/pull/1920) by @​sadath-12
• Introduce install/kubernetes/Makefile (https://github.com/cilium/tetragon/pull/1930) by @​sadath-12
• chore: unloadpolicy after load (https://github.com/cilium/tetragon/pull/1916) by @​sadath-12
• Add masOS compatibility for 'sed' usage in scripts (https://github.com/cilium/tetragon/pull/1827) by @​PhilipSchmid
• bpf/exec: Move call to read_exe to tail call (https://github.com/cilium/tetragon/pull/1982) by @​tpapagian
• crd: Fix type mismatch warning (https://github.com/cilium/tetragon/pull/1979) by @​tpapagian
• gitattributes: add to the list of generated files (https://github.com/cilium/tetragon/pull/1987) by @​mtardy
• metrics: Do not process the same map multiple times (https://github.com/cilium/tetragon/pull/1996) by @​tpapagian
• Revert "testutils: Fix RepoRootPath when Tetragon is vendored" (https://github.com/cilium/tetragon/pull/2012) by @​tpapagian
• fix: fill the missing type in tracingpolicy example (https://github.com/cilium/tetragon/pull/1917) by @​sadath-12
• Perf: Remove extra copies of data from ring buffer (https://github.com/cilium/tetragon/pull/2009) by @​kevsecurity
• api:proto: rename Inode to InodeProperties (https://github.com/cilium/tetragon/pull/2026) by @​tixxdz
• Git-ignore drop-privileges along with other binaries (https://github.com/cilium/tetragon/pull/2038) by @​christian-2
• Update github.com/opencontainers/runc to v1.1.12 (https://github.com/cilium/tetragon/pull/2046) by @​tpapagian
• bpf: document how to use read_exe() (https://github.com/cilium/tetragon/pull/2064) by @​tixxdz
• tests: add debug message to TestProcessSetCap (https://github.com/cilium/tetragon/pull/2072) by @​tixxdz
• tetragon: Harden TestMatchCloneThreadsIDs test (https://github.com/cilium/tetragon/pull/2075) by @​olsajiri
• chore: Sync bpf_tracing.h (https://github.com/cilium/tetragon/pull/2091) by @​tpapagian
• tetragon: Remove superfluous MapDir (https://github.com/cilium/tetragon/pull/2106) by @​olsajiri
• makefile: containerize CRD generation and rename codegen and generate targets (https://github.com/cilium/tetragon/pull/2131) by @​willfindlay
• Remove unused PodInfo utility functions (https://github.com/cilium/tetragon/pull/2144) by @​sfc-gh-gshe
• cmd/tetra: remove tp_state_ prefix in state in tp list https://github.com/cilium/tetragon/pull/21533) by @​mtardy
• tetragon: Move enforcer-tester to .gitignore (https://github.com/cilium/tetragon/pull/2166) by @​olsajiri
• tetragon: Assorted sensor fixes (https://github.com/cilium/tetragon/pull/2145) by @​olsajiri
• watcher: Don't create service and podInfo informers (https://github.com/cilium/tetragon/pull/2167) by @​lambdanis
• pkg/k8s: fix use of deprecated scripts (https://github.com/cilium/tetragon/pull/2180) by @​mtardy
• tetragon-oci-hook: improve logging (https://github.com/cilium/tetragon/pull/2186) by @​kkourt
• Add error checking to program loading with respect to probe type. (https://github.com/cilium/tetragon/pull/2135) by @​kevsecurity
• tetragon: Remove superfluous switch in HandleMessage callbacks (https://github.com/cilium/tetragon/pull/2178) by @​olsajiri
• tetragon: update bpf func mappings and add dynptr_, timer, ring* https://github.com/cilium/tetragon/pull/22055) by @​jrfastab
• make: fix make crds and generate targets (https://github.com/cilium/tetragon/pull/2215) by @​tixxdz
• Makefile: run tests as root without building as root (https://github.com/cilium/tetragon/pull/2211) by @​mtardy
• tetragon: update bpf func reserve mapping for proper return value (https://github.com/cilium/tetragon/pull/2217) by @​jrfastab
• examples: Remove ".yaml" suffix from privileges-setuid-root (https://github.com/cilium/tetragon/pull/2227) by @​lambdanis
• bpf: read_call_arg, copy_path once (https://github.com/cilium/tetragon/pull/2239) by @​kkourt
• e2e tests minor patches (https://github.com/cilium/tetragon/pull/2225) by @​kkourt
• e2e: check policy state (https://github.com/cilium/tetragon/pull/2229) by @​kkourt
• tetragon: Implement bpf.GetNumPossibleCPUs through cilium/ebpf library (https://github.com/cilium/tetragon/pull/2244) by @​olsajiri
• OCI hooks: add container name and QoL updates (https://github.com/cilium/tetragon/pull/2248) by @​kkourt
• observer: remove unused field (https://github.com/cilium/tetragon/pull/2260) by @​kkourt
• Makefile: add native build support for arm64 MacOS (https://github.com/cilium/tetragon/pull/2258) by @​f1ko
• fixes for policystatemetrics (https://github.com/cilium/tetragon/pull/2285) by @​kkourt
• tetragon: cleanup pfilter.h to make it readable (https://github.com/cilium/tetragon/pull/2288) by @​jrfastab
• jsonchecker: reset state of the export file (https://github.com/cilium/tetragon/pull/2289) by @​kkourt
• fix policyfilter metrics (https://github.com/cilium/tetragon/pull/2282) by @​kkourt
• BTF validation fixes (https://github.com/cilium/tetragon/pull/2312) by @​kkourt
• Change the behaviour of redaction filters to fix a critical bug and improve performance. (https://github.com/cilium/tetragon/pull/2322) by @​willfindlay
• tetragon: fix redaction filters log message (https://github.com/cilium/tetragon/pull/2325) by @​willfindlay
• metrics: Refactor metrics label filter logic (https://github.com/cilium/tetragon/pull/2321) by @​lambdanis
• Makefile: Do not use $(MAKE) when calling make with docker run (https://github.com/cilium/tetragon/pull/2341) by @​chancez
• k8s: Fix CRDs Go code generation (https://github.com/cilium/tetragon/pull/2339) by @​lambdanis
• tetra: no longer show singular getevents cmd flags as deprecated (https://github.com/cilium/tetragon/pull/2348) by @​mtardy
• metrics: Refactor metrics label filter logic (https://github.com/cilium/tetragon/pull/2373) by @​lambdanis
• Dockerfile: Remove syntax annotation (https://github.com/cilium/tetragon/pull/2385) by @​lambdanis
• ci: Skip checkpatch for Renovate PRs (https://github.com/cilium/tetragon/pull/2386) by @​lambdanis
• metrics: Return a copy of LabelFilter in WithEnabledLabels(nil) (https://github.com/cilium/tetragon/pull/2378) by @​lambdanis
• Prepare for v1.1.0 release (https://github.com/cilium/tetragon/pull/2392) by @​kkourt

All changes

• Add a metric to provide missed events per type by @​tpapagian in https://github.com/cilium/tetragon/pull/1674
• server: fix another segfault related to field filters by @​willfindlay in https://github.com/cilium/tetragon/pull/1700
• docs: update tetragon.io title by @​hacktivist123 in https://github.com/cilium/tetragon/pull/1709
• chore(deps): update go by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1711
• chore(deps): update docker.io/golangci/golangci-lint docker tag to v1.55.2 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1714
• fix(deps): update module golang.org/x/time to v0.4.0 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1721
• chore(deps): update quay.io/lvh-images/kernel-images docker tag to bpf-next-20231106.012832 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1715
• renovate: let renovate update gops in Dockerfile by @​mtardy in https://github.com/cilium/tetragon/pull/1713
• fix(deps): update module github.com/bombsimon/logrusr/v4 to v4.1.0 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1716
• fix(deps): update module github.com/spf13/cobra to v1.8.0 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1718
• fix(deps): update module golang.org/x/sync to v0.5.0 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1719
• chore(deps): update dependency google/gops to v0.3.28 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1722
• fix(deps): update module github.com/cilium/cilium to v1.15.0-pre.2 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1724
• fix(deps): update module github.com/cilium/cilium to v1.15.0-pre.2 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1723
• filters/fields: do a deep copy before filtering by @​willfindlay in https://github.com/cilium/tetragon/pull/1712
• pkg/option: add metrics-label-filter flags by @​Jack-R-lantern in https://github.com/cilium/tetragon/pull/1678
• fix(deps): update module github.com/opencontainers/runc to v1.1.10 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1725
• Fix missing parent issue in clone events by @​tpapagian in https://github.com/cilium/tetragon/pull/1708
• tetragon: factor kprobes by @​olsajiri in https://github.com/cilium/tetragon/pull/1685
• chore(deps): update go to v1.21.4 (patch) by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1733
• docs: remove mention of obsolete map_linux.go by @​lmb in https://github.com/cilium/tetragon/pull/1734
• pkg/bench: disable BPF stats collection at the end of execution by @​lmb in https://github.com/cilium/tetragon/pull/1735
• chore(deps): pin docker/dockerfile docker tag to e2a8561 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1736
• chore(deps): update quay.io/lvh-images/kernel-images docker tag to bpf-next-20231113.012843 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1737
• tetragon: namespace checks by @​tixxdz in https://github.com/cilium/tetragon/pull/1627
• fix(deps): update module github.com/cilium/ebpf to v0.12.3 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1738
• fix(deps): update module github.com/google/cel-go to v0.18.2 by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1739
• renovate: enable stable support for v1.0 and fixes by @​mtardy in https://github.com/cilium/tetragon/pull/1742
• fix(deps): update golang.org/x/sys digest to 11eadc0 (main) by @​cilium-renovate in https://github.com/cilium/tetragon/pull/1744
• Avoid requiring the latest Go toolchain patch version to build by @​mtardy in [https://github.com/Avoid requiring the latest Go toolchain patch version to build cilium/tetragon#1748](https://togithub.co

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[nicholasdille-bot]

Auto-approved because label type/renovate is present.

[github-actions]

🔍 Vulnerabilities of ghcr.io/uniget-org/tools/tetragon:1.1.0

📦 Image Reference ghcr.io/uniget-org/tools/tetragon:1.1.0

digest	sha256:65ec7406359c8c691c41f0c708db7058f97c0c6de5b5b6d5bf415e80f66cd700
vulnerabilities
platform	linux/amd64
size	21 MB
packages	140

k8s.io/apiserver 0.29.4 (golang) pkg:golang/k8s.io/apiserver@0.29.4 OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities Affected range <1.15.10 Fixed version 1.15.10, 1.16.7, 1.17.3 CVSS Score 4.3 CVSS Vector CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Description The Kubernetes API server component has been found to be vulnerable to a denial of service attack via successful API requests.

[github-actions]

Attempting automerge. See https://github.com/uniget-org/tools/actions/runs/8882117165.

[github-actions]

PR is clean and can be merged. See https://github.com/uniget-org/tools/actions/runs/8882117165.