Releases: akamai/uls
Releases · akamai/uls
v1.7.4
PLEASE DO NOT USE THIS RELEASE FOR NOW
The EAA INPUT in DOCKER seems to have an issue, a fix version will be released, soon
v1.7.4
| Date | 2024-06-17 |
| Kind | MINOR release |
| Author | mschiess@akamai.com, androcho@akamai.com |
-
Features
- New Input & Feed available - Akamai Control Center Events
-
Minor improvements
- [docker] Bumped Python version to 3.12.4
- [docker] bumped CLI-EAA to "0.6.9"
- HYDROLIX documentation added to the SIEM integrations
-
BUGFIX
- Fixed a bug in the autoresume function where SIA does not equal it's alias ETP properly
v1.7.3
v1.7.3
| Date | 2024-04-02 |
| Kind | MINOR release |
| Author | mschiess@akamai.com, androcho@akamai.com |
-
Features
- introduced "audit logs" for Guardicore
- introduced "AUTORESUME" functionality for GC: NETLOG, INCIDENTS and AUDIT
- TCPUDP/HTTP format string now support varialbe substitution:
- Substitution: {api_hostname}, {uls_input}, {uls_feed}
- OS ENV VARS: $VAR_NAME
-
Minor improvements
Contributors
antoine
Assets 2
v1.7.2
v1.7.2
| Date | 2024-02-08 |
| Kind | MINOR release |
| Author | mschiess@akamai.com |
- Minor improvements
- Introduced Secure Internet Access (formerly ETP) as INPUT specification (as an alias to ETP)
- added "ETP NETCON" to the autoresume feature
- prevented "EAA DIRHEALTH" to be mistakenly autoresumed
- Imrpoved log overview readability
- Added
--debugloglinesto allow control of input loglines being sent to the debug log - Added Microsoft Sentinel SIA / ETP integration documentation
- Added a FAQ entry regarding time synchronization
- [docker] bumped python version to "3.12.2"
- [docker] bumped gc_logs version to "0.0.3(beta)"
- Fixed a doc error (PR by @pizza0rodeo ) - thanks for your contribution
- BUGFIX
- Fixed a bug in the autoresume function that created a problem with timezones in certain circumstances
- Housekeeping
- improved local container testing
Contributors
pizza0rodeo
Assets 2
v1.7.1
v1.7.1
| Date | 2023-10-11 |
| Kind | BUGFIX release |
| Author | mschiess@akamai.com |
- BUGFIX
- Fixed a bug in the ETP & EAA CLI that prevented ULS to run properly in docker environment
- [docker] bumped CLI-EAA to "0.6.3"
- [docker] bumped CLI-ETP version to "0.4.5"
- Fixed a bug in the ETP & EAA CLI that prevented ULS to run properly in docker environment
- Housekeeping
- Added additional automated testing to the docker release process
v1.7.0
v1.7.0
| Date | 2023-10-10 |
| Kind | FEATURE release |
| Author | mschiess@akamai.com, androcho@akamai.com |
- Features
- Allowing the configuration of the HTTPFORMATTYPE, which controls the building of payloads for aggregated HTTP requests (click here for additional information)
- Allow adjustment of the "INPUT QUEUE SIZE" threshold (--inputqueuesize) in order to handle huge API pages and fast API output
- New feed for EAA: Directory Health (dirhealth) to fetch health details for configured directories wihtin EAA
- Minor improvements
- Added additional checking in the auto installer
- [docker] bumped python version to "3.12.0"
- [docker] bumped GC-LOGS version to "0.0.2(beta)", now supporting credentials in ENV VARS
- [docker] bumped CLI-EAA to "0.6.2"
- [docker] bumped CLI-ETP version to "0.4.4" - fixed a bug in output ordering + empty response handling.
- "get_uls.sh" now allows selection of OS package installation rather than pip3. See for more information
- Housekeeping
- DocFix Readme.md (thx @ihommani)
- Increased default input_queue_size from 10000 to 15000 to avoid race conditions when an API is answering very fast
v1.6.6
| Date | 2023-08-23 |
| Kind | Minor release |
| Author | mschiess@akamai.com, androcho@akamai.com |
- Features
- Added '--httpliveness' to disable HTTP(S) OPTIONS request for liveness checking
- Added new feed for ETP: Network traffic connections details (netcon) [Requires CLI-ETP >= 0.4.2]
- Minor improvements
- DOC Fix for manual CLI installation
- [docker] bumped CLI-EAA version to "0.5.9"
- [docker] bumped CLI-ETP version to "0.4.2"
- Housekeeping
- Updated the ETP Links from developer.akamai.com to techdocs.akamai.com
- Added "docker file liniting" into test scripts
v1.6.5
v1.6.5
| Date | 2023-07-28 |
| Kind | Minor release |
| Author | mschiess@akamai.com |
- Minor improvements
- Allow manipulation of the TCP & UDP output format (--tcpudpformat / ULS_TCPUDP_FORMAT).
- [docker] bumped source image to 3.11.4-slim-bookworm (new debian release)
v1.6.4
v1.6.4
| Date | 2023-05-02 |
| Kind | Minor release |
| Author | mschiess@akamai.com |
- Minor improvements
- Updated docs to clarify the required timestamp format (undefined --> epoch time in seconds)
- [docker] bumped CLI-EAA version to "0.5.7"
- [docker] bumped python version to 3.11.3
- [docker] bumped CLI-GC version to "v0.0.1(beta)"
- [docker] bumped CLI-MFA version to 0.1.1
- Bugfix
--endtime <value>didn't cause ULS to eventually stop ops. This is now fixed.- improved container detection (only cosmetic improvement)
v1.6.3
v1.6.3
| Date | 2022-11-29 |
| Kind | Minor release |
| Author | mschiess@akamai.com |
- Minor improvements
- Introduced '--httpaggregate' / 'ULS_HTTP_AGGREGATE' option to allow easier management of the HTTP(S) aggregation function
- fixed concatenation issue on HTTP (multi-event bundle)
- [docker] bumped CLI-ETP version to 0.4.0 (future api support fix)
- [docker] bumped python version to 3.11.0
- fixed a bug in the "file output handler" - reported in issue#35
- fixed a bug in the "get_uls.sh" script which stated the wrong error message when pip was not found
- minor fix to properly detect "podman" as docker alternative
- Amendend installation steps for Guardicore and Linode log-fetcher(s)
v1.6.2
v1.6.2
| Date | 2022-10 |
| Kind | Minor release |
| Author | mschiess@akamai.com |
- Minor improvements
- Bumped EAA CLI to version 0.5.1 (additional SIEM fields - EAA release 2022.02)
- Amended FAQ to handle self-signed certificates alongside Guardicore
- Added installation ID ("random string" + "current date YMD" + "first installed version") to support debugging process
- fixed a bug in the Dockerfile that left uls/var unusable
- Housekeeping
- fixed some bugs in testing (false negative) & speeded up testing process