Commit Graph

  • 8e9e221196 Merge pull request #16035 from Security-Onion-Solutions/reyesj2/huntquery 3/dev Jorge Reyes 2026-07-02 14:50:59 -05:00
  • 1fe7726aff Changes from feedback feature/sigma-playbooks Josh Brower 2026-07-02 14:58:48 -04:00
  • 83cf1f0793 New Client Params for Tool Retries feature/agentic Corey Ogburn 2026-07-02 10:11:52 -06:00
  • 3310e19ee4 Merge remote-tracking branch 'origin/3/dev' into saltthangs saltthangs Josh Patterson 2026-07-02 10:27:54 -04:00
  • 07d6b2cfdd Merge pull request #16033 from Security-Onion-Solutions/jertel/wip Jason Ertel 2026-07-02 09:20:48 -04:00
  • 89afea876a Merge branch '3/dev' into jertel/wip jertel/wip Jason Ertel 2026-07-02 09:04:57 -04:00
  • 1243a25bd3 avoid setup failure reason ambiguity Jason Ertel 2026-07-02 08:59:52 -04:00
  • 8675296393 More Agentic Fields Corey Ogburn 2026-07-01 15:04:42 -06:00
  • 23f04e2866 maxSubSessionTokens and maxDelegationDepth config settings Matthew Wright 2026-06-15 11:40:01 -04:00
  • 76f6947f36 Merge pull request #16029 from Security-Onion-Solutions/surirulereload Josh Patterson 2026-07-01 16:54:02 -04:00
  • 92a55386c6 Merge pull request #16028 from Security-Onion-Solutions/reyesj2-patch-6 Jorge Reyes 2026-07-01 15:50:54 -05:00
  • e7352eb841 duplicate repo name in so-repo-sync reyesj2 2026-07-01 15:17:55 -05:00
  • 795aa898a3 suricata: only reload rules once the ruleset file exists surirulereload Josh Patterson 2026-07-01 15:12:54 -04:00
  • 69d77382f1 suricata: timestamp each line of reload log output Josh Patterson 2026-07-01 15:12:53 -04:00
  • dc9b4f3ce5 Merge pull request #16027 from Security-Onion-Solutions/reyesj2-patch-6 Jorge Reyes 2026-07-01 13:48:10 -05:00
  • 87b9276c79 increase wait_for_so-kibana timeout to 10m reyesj2 2026-07-01 13:19:47 -05:00
  • 99118f9bed Merge pull request #16023 from Security-Onion-Solutions/reyesj2/uekairgap Jorge Reyes 2026-07-01 13:14:55 -05:00
  • 24b75b4a2b typo reyesj2 2026-07-01 12:50:23 -05:00
  • 395bd627f1 Merge pull request #16024 from Security-Onion-Solutions/reyesj2/fixsearch Jorge Reyes 2026-07-01 11:59:00 -05:00
  • 868b217549 update default hunt query reyesj2 2026-07-01 11:37:46 -05:00
  • c33db9d00f remove outdated eval script and associated salt utility state reyesj2 2026-07-01 11:12:39 -05:00
  • e88eb65a44 keep old packages for rollback ability reyesj2 2026-07-01 10:29:05 -05:00
  • dc8c80633b update airgap soup to sync uek repo from iso and retain latest packages only reyesj2 2026-07-01 10:23:04 -05:00
  • f441d98e71 Merge remote-tracking branch 'origin/3/dev' into saltthangs Josh Patterson 2026-07-01 10:34:56 -04:00
  • 895aa18486 Merge pull request #16021 from Security-Onion-Solutions/surirulereload Josh Patterson 2026-07-01 10:33:14 -04:00
  • 2a6cc58306 Simplify mappings Josh Brower 2026-07-01 09:07:02 -04:00
  • ee36f5f84c suricata: verify reloaded ruleset is newer than the rules file Josh Patterson 2026-07-01 09:00:36 -04:00
  • 9217670bab support sigma playbooks Josh Brower 2026-06-30 16:21:01 -04:00
  • a3f586cf88 Merge pull request #16018 from Security-Onion-Solutions/reyesj2/kf Jorge Reyes 2026-06-30 14:46:22 -05:00
  • 670d2b2757 casing reyesj2/kf reyesj2 2026-06-30 12:57:56 -05:00
  • 3b8459c6ec soup upgrade kafka cluster metadata v4 reyesj2 2026-06-30 12:43:42 -05:00
  • 52574e21c6 suricata: treat in-progress rule reload as success Josh Patterson 2026-06-30 09:40:23 -04:00
  • a330bea25e Rename push-detection beacons to clearer names Josh Patterson 2026-06-29 14:29:07 -04:00
  • 33c24cd136 Merge remote-tracking branch 'origin/3/dev' into saltthangs Josh Patterson 2026-06-26 15:42:56 -04:00
  • 12f4447875 Replace inotify rule-watch beacon with poll-based rules_db beacon Josh Patterson 2026-06-26 15:40:32 -04:00
  • 576c7bfedd Merge pull request #16013 from Security-Onion-Solutions/reyesj2/so-start Jorge Reyes 2026-06-26 13:47:09 -05:00
  • b3b7ecdded update so-stop | so-start | so-restart scripts reyesj2/so-start reyesj2 2026-06-26 13:19:18 -05:00
  • 0af020b6c3 Merge pull request #16012 from Security-Onion-Solutions/kernel Mike Reeves 2026-06-26 12:04:33 -04:00
  • 339a5af4a3 Serve /kernelrepo through nginx so minions can reach the kernel repo kernel Mike Reeves 2026-06-26 12:02:49 -04:00
  • da94788255 Move highstate_interval_hours to salt.schedule and split schedule.sls Josh Patterson 2026-06-26 10:51:41 -04:00
  • 7952c274c4 Merge pull request #16011 from Security-Onion-Solutions/kernel Mike Reeves 2026-06-26 09:27:01 -04:00
  • 67a9abadf2 Gate so_kernel_repo on running salt matching the shipped version Mike Reeves 2026-06-26 09:21:11 -04:00
  • 94f31e1356 Add so-kernel-upgrade to switch the boot default to the UEK8 kernel Mike Reeves 2026-06-26 09:21:11 -04:00
  • 435e2b4182 Merge pull request #16009 from Security-Onion-Solutions/zeek-communityid Josh Brower 2026-06-25 21:04:27 +02:00
  • d0edfd2131 set transport for ssl.established:false logs zeek-communityid Josh Brower 2026-06-25 14:18:43 -04:00
  • 13ebde61bd Merge pull request #16000 from Security-Onion-Solutions/kernel Mike Reeves 2026-06-25 14:15:58 -04:00
  • fa2ae1b87f Merge remote-tracking branch 'origin/3/dev' into saltthangs Josh Patterson 2026-06-25 11:45:03 -04:00
  • 5bf9751adf do not disable during state run Josh Patterson 2026-06-25 11:44:38 -04:00
  • 3effdbc91e do not disable during state run Josh Patterson 2026-06-25 11:36:52 -04:00
  • 30312b93a6 Merge pull request #16008 from Security-Onion-Solutions/jertel/wip Jason Ertel 2026-06-25 10:19:56 -04:00
  • a9c03e39bb support multiple capinfos versions Jason Ertel 2026-06-25 09:32:08 -04:00
  • 8836529496 Merge remote-tracking branch 'origin/3/dev' into saltthangs Josh Patterson 2026-06-25 08:13:32 -04:00
  • b09c3776b7 Point pillar_db beacon at securityonion database Josh Patterson 2026-06-24 16:51:32 -04:00
  • dfdb1fbaeb Move global.push config to salt.auto_apply Josh Patterson 2026-06-24 15:17:48 -04:00
  • 4d34470b84 Merge pull request #16005 from triggerman86/triggerman-fix-root_check-so-soup Dan Marr 2026-06-24 13:41:53 -04:00
  • b0b022c3ad Seed an empty /nsm/kernelrepo so the manager repo is always valid Mike Reeves 2026-06-24 13:23:25 -04:00
  • 27c1c35e62 Mark kernel repo skip_if_unavailable so an empty repo can't brick dnf Mike Reeves 2026-06-24 13:20:10 -04:00
  • f45631af3a Guard kernel reposync on its config section existing Mike Reeves 2026-06-24 12:15:10 -04:00
  • 61aa963a2d Merge remote-tracking branch 'origin/3/dev' into saltthangs Josh Patterson 2026-06-24 08:10:27 -04:00
  • 81c8d54589 Merge pull request #16006 from Security-Onion-Solutions/reyesj2-patch-5 Jorge Reyes 2026-06-23 15:53:34 -05:00
  • 4f3b57f495 remove duplicate package-upgrade attempts, upgrade only when reported latest version differs from installed version reyesj2-patch-5 reyesj2 2026-06-23 15:52:10 -05:00
  • 84228a819b remove heayvnode FleetServer_* directory creation, and skip empty directories during FleetServer policy management reyesj2 2026-06-23 15:30:49 -05:00
  • 81ebea0451 Fix non-root exit checks at start of so-setup Dan Marr 2026-06-23 16:07:30 -04:00
  • 8e2753aeb8 Fix duplicate securityonionkernel repo definition Mike Reeves 2026-06-23 13:53:14 -04:00
  • 698a746d6d Add UEK8 kernel repo support across install and grid Mike Reeves 2026-06-23 13:19:56 -04:00
  • d71e80cf66 Merge remote-tracking branch 'origin/3/dev' into saltthangs Josh Patterson 2026-06-23 10:32:32 -04:00
  • a9f9d8bd0d Merge pull request #15985 from Security-Onion-Solutions/soupmod2 Josh Patterson 2026-06-22 17:02:02 -04:00
  • 953fdee3af Merge pull request #15984 from Security-Onion-Solutions/jertel/wip Jason Ertel 2026-06-22 16:56:18 -04:00
  • e2e3e690ca reset version Jason Ertel 2026-06-22 16:52:29 -04:00
  • 323491f58e Merge pull request #15983 from Security-Onion-Solutions/reyesj2-jpp soupmod2 Josh Patterson 2026-06-22 16:52:10 -04:00
  • 96fcc0ec38 wip reyesj2-jpp reyesj2 2026-06-22 14:25:46 -05:00
  • bcc60a4ae0 kilo version Jason Ertel 2026-06-22 13:07:49 -04:00
  • b77103aa9f upgrade registry Jason Ertel 2026-06-22 13:01:02 -04:00
  • c950ac7370 Merge remote-tracking branch 'origin/3/dev' into soupmod soupmod Josh Patterson 2026-06-22 09:41:16 -04:00
  • 63a2e20698 Merge pull request #15982 from Security-Onion-Solutions/reyesj2/wip Jorge Reyes 2026-06-18 15:25:41 -05:00
  • 22d5c96bd5 don't create stack trace when set -e is disabled reyesj2 2026-06-18 14:56:29 -05:00
  • 28fdd1eb6f Merge pull request #15970 from Security-Onion-Solutions/udev Mike Reeves 2026-06-18 14:28:09 -04:00
  • d0bea2ebcb Restore grouped per-integration logging and retry 409s in fleet integration loader Josh Patterson 2026-06-18 11:19:36 -04:00
  • 62c01a9756 Merge remote-tracking branch 'origin/3/dev' into soupmod2 Josh Patterson 2026-06-18 09:53:44 -04:00
  • b143e1e577 Merge pull request #15979 from Security-Onion-Solutions/reyesj2/wip Jorge Reyes 2026-06-17 16:47:49 -05:00
  • 16149df71f formatting reyesj2 2026-06-16 18:06:27 -05:00
  • 6a18f35020 add context to soup errors and optional soup debug log with xtrace output reyesj2 2026-06-16 17:47:46 -05:00
  • aa58225e8f Merge pull request #15974 from Security-Onion-Solutions/jertel/wip Jason Ertel 2026-06-16 14:27:54 -04:00
  • 8e33d0e1e9 Merge remote-tracking branch 'origin/3/dev' into soupmod2 Josh Patterson 2026-06-16 12:54:18 -04:00
  • acf48db915 Merge pull request #15978 from Security-Onion-Solutions/reyesj2-patch-1 Jorge Reyes 2026-06-16 11:17:56 -05:00
  • 3daed551df use --fail flag without set -x, since elasticsearch can return a 404 on the template lookup reyesj2 2026-06-16 11:17:04 -05:00
  • 4456bde1c8 check if template exists without --fail flag reyesj2 2026-06-16 10:45:53 -05:00
  • 4a6c675223 skip kibana backport if the template doesn't exist Jorge Reyes 2026-06-16 10:33:11 -05:00
  • a769d4c680 another unneeded default reyesj2 2026-06-16 09:32:37 -05:00
  • f68e3e47a1 remove pillar merge reyesj2 2026-06-16 09:19:10 -05:00
  • b81257bf45 Merge pull request #15973 from Security-Onion-Solutions/reyesj2/dlm-support Jorge Reyes 2026-06-15 14:47:51 -05:00
  • 1a423a2434 update message reyesj2 2026-06-15 14:17:34 -05:00
  • 95cae4c734 remove so-elasticsearch-indices-delete cron when using DLM reyesj2 2026-06-15 13:32:45 -05:00
  • 596471e140 using new annotation config reyesj2 2026-06-15 13:31:53 -05:00
  • d10f21399c remove comments reyesj2 2026-06-15 13:31:23 -05:00
  • ae1ddf3817 es|ql defaults Jason Ertel 2026-06-15 12:33:08 -04:00
  • ea73216f4e Merge pull request #15971 from Security-Onion-Solutions/delta Josh Brower 2026-06-15 15:28:03 +02:00
  • 1ee555957a Speed up so-elastic-fleet-integration-upgrade Josh Patterson 2026-06-12 15:23:43 -04:00
  • 43f72c1f9f Parallelize so-elasticsearch-templates-load template PUTs Josh Patterson 2026-06-12 15:11:34 -04:00
  • 9031c1fd22 userid vs names delta Josh Brower 2026-06-12 11:18:59 -04:00