Minor features and improvements for xray, build, profile and debug as well as minor new sensor features
New Features
- Sensor
control
commands to control sensor execution when running in the standalone mode (first command:stop-target-app
). xray
- detect system identities (users, groups) and their properties (--detect-identities
flag, enabled by default).build
- Keep the OS/libc zoneinfo data (--include-zoneinfo
flag, disabled by default).build
/profile
- Mon(itor) Data Event Log (akamondel
) - optional data event log for sensor monitors to log/stream monitor events (--enable-mondel
main app flag,--mondel
/-n
sensor flag(s)).
Improvements
target-app-running
sensor lifecycle hook.build
/profile
:--env-file
to load env vars from a file.build
/profile
: basic input validation to ignore malformed env var data for the--env
flag.build
: Using internal output image builder by default (--image-build-engine
flag)- Renamed the reverse engineered Dockerfile from
Dockerfile.fat
toDockerfile.reversed
(the reversed Dockerfile is also saved with the old name for backward compatibility
Bug Fixes
- Various bug fixes (see commits/PRs for details)
Binaries
Build them from source or download from a CDN location:
- Linux
- Linux ARM
- Linux ARM64
- Mac
- Mac M1
- Containerized:
docker pull dslim/slim