metal-toolbox / auditevent Goto Github PK
View Code? Open in Web Editor NEWThis includes a library and set of utilities to deal with audit events.
License: Apache License 2.0
This includes a library and set of utilities to deal with audit events.
License: Apache License 2.0
This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.
These updates are currently rate-limited. Click on a checkbox below to force their creation now.
These updates have all been created already. Click a checkbox below to force a retry/rebase of any.
.devcontainer/docker-compose.yml
.devcontainer/Dockerfile
mcr.microsoft.com/vscode/devcontainers/go 1-1.20-bullseye
images/audittail/Dockerfile
docker.io/library/golang 1.21
.github/workflows/auto-tag.yml
actions/checkout v4
anothrNick/github-tag-action 1.67.0
.github/workflows/codeql-analysis.yml
actions/checkout v4
github/codeql-action v3
github/codeql-action v3
github/codeql-action v3
.github/workflows/dependency-review.yml
actions/checkout v4
actions/dependency-review-action v4
.github/workflows/release-latest.yml
.github/workflows/release.yml
actions/checkout v4
softprops/action-gh-release v1
.github/workflows/security.yml
actions/checkout v4
github/codeql-action v3
actions/checkout v4
anchore/scan-action v3
github/codeql-action v3
.github/workflows/test.yml
actions/checkout v4
actions/setup-go v5
codecov/codecov-action v3
actions/checkout v4
docker/build-push-action v5
anchore/scan-action v3
github/codeql-action v3
actions/checkout v4
helm/kind-action v1.9.0
azure/setup-helm v4
go.mod
go 1.19
github.com/gin-gonic/gin v1.9.1
github.com/go-logr/logr v1.4.1
github.com/go-logr/zapr v1.3.0
github.com/google/uuid v1.6.0
github.com/labstack/echo/v4 v4.11.4
github.com/prometheus/client_golang v1.18.0
github.com/prometheus/common v0.46.0
github.com/spf13/cobra v1.8.0
github.com/stretchr/testify v1.9.0
go.uber.org/zap v1.27.0
golang.org/x/sync v0.6.0
Makefile
golangci/golangci-lint v1.55.2
The OpenAuditLogFileUntilSuccess
helper silently blocks until the named pipe is available. While the wait was intentional, this is not user-friendly and causes confusion. Let's at least print an message that the wait is happening.
The Go Doc for NewDefaultAuditEventWriter
says:
// AuditEventEncoderJSON is an encoder that encodes audit events
// using a default JSON encoder.
Is AuditEventEncoderJSON
a typo in the documentation, or should that be the function's name? Is the function supposed to use a JSON encoder?
some metal-toolbox/infratographer projects are adopting echo, we should cater for them and provide audit middleware for them to use.
The audittail
container uses stdout
to flush the audit logs it's tailing. This is useful for containers as they'll get immediately picked up by a log forwarder. However, we don't necessarily want to pollute these logs.
However, we still want to know if the audittail
container had an error. Having a dedicated error file (that is not necessarily stderr
) would be ideal for this. In cases where audittail
is deployed in Kubernetes, it could be /dev/termination-log
.
While working on a project that uses this library, I implemented an Encoder that (accidentally) produced a deadlock. While write operations are usually considered non-blocking operations, there are exceptions such as writing to a FIFO pipe (by default the write blocks until a read occurs).
In discussing the issue with @JAORMX, Ozz felt we should either support cancellation or document such a cases in the auditevent library.
By distributing a helm chart that provides values for the init container and the main sidecar, we could allow helm chart users to get automated dependency updates while making the adoption barrier even lower. The helm chart should allow for inserting a template for the init container and the sidecar, set the name of the mounted volume for audit logs, as well as a custom path for the logs.
A declarative, efficient, and flexible JavaScript library for building user interfaces.
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. ๐๐๐
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google โค๏ธ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.