Open imreczegledi-form3 opened 1 month ago
I'm facing the same issue on a rancher RKE2 cluster using the same embedded rule file : /etc/falco/k8s_audit_rules.yaml I roll-back to 4.3.1 waiting for a fix.
Hi @DanielViard, @imreczegledi-form3 , we are working on it. We will release a fix ASAP!
The fix is here: https://github.com/falcosecurity/falco/pull/3236. It will be included in the next patch release of Falco.
Invalid
k8s_audit_rules.yaml
error, during deployment of chart version4.4.0
(version4.3.0
works corretly)falco -V /etc/falco/k8s_audit_rules.yaml
doesn't find any issue.How to reproduce it
Deploy the latest Helm chart.
Environment
Chart:
falcosecurity/falco
version 4.4.0Relevant values: