-
**Is your feature request related to a problem? Please describe.**
Instead of developing your own alerting sub-system, I think it might be preferable to use something that already supports dozens of …
-
**Motivation**
Currently the `github.repo` field exposes the full repo url (`html_url` json field). To make processing the output with f.e. falcosidekick easier ([#falcosidekick 537](https://gi…
-
**Describe the bug**
When using the Helm chart to use Falco Sidekick UI with an Ingress, the resulting endpoint results in 404 on all resource requests.
**How to reproduce it**
Run Helm chart…
-
### Integration Name
Falco [falco]
### Dataset Name
falco.alerts
### Integration Version
1.0.2
### Agent Version
8.16
### Agent Output Type
elasticsearch
### Elasticsearch Version
8.16
###…
-
**Motivation**
The current Falco Sidekick Helm chart does not support configuring Elasticsearch pipeline settings in the `values.yaml` file, even though this feature is already supported in Falco (as…
-
This issue is there to list the outputs I think might be interested to integrate in Falcosidekick.
> **Note**
If anyone is interested, please, add a comment and I'll add your name aside the output…
Issif updated
3 weeks ago
-
**Motivation**
We use falcosidekick to deliver the alerts to our analysis platform(like SIEM), so we often need all of the available fields to support the analyzing.
But the `output_fields` in t…
-
**Motivation**
Falco currently sends alerts/logs with a predefined set of wrapper fields, some of which are configurable (such as tags, etc.).
For example:
```
{
"hostname": "test-host",
…
-
**Motivation**
Linting code is a fundamental practice for ensuring consistent coding standards within a project. Integrating a linting CI check into the development workflow is considered a best pr…
-
Aggregator of all [AWS security events](https://aws.amazon.com/security-hub/).
In an ideal situation, add Falco as a third-party service that can send events to the Security Hub.
https://docs.aws.…