feat [#8647]: mark linux integrations requiring root

packages/auditd_manager/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.16.3"
+  changes:
+    - description: capture root requirement
+      type: enhancement
+      link: https://github.com/elastic/integrations/issues/8647
 - version: "1.16.2"
   changes:
     - description: Changed owners

packages/auditd_manager/manifest.yml

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: auditd_manager
 title: "Auditd Manager"
-version: "1.16.2"
+version: "1.16.3"
 description: "The Auditd Manager Integration receives audit events from the Linux Audit Framework that is a part of the Linux kernel."
 type: integration
 categories:
@@ -36,6 +36,9 @@ policy_templates:
       - type: audit/auditd
         title: Collect auditd events
         description: Collecting auditd events
+agent:
+  privileges:
+    root: true
 owner:
   github: elastic/sec-linux-platform
   type: elastic

packages/fim/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.14.2"
+  changes:
+    - description: capture root requirement
+      type: enhancement
+      link: https://github.com/elastic/integrations/issues/8647
 - version: "1.14.1"
   changes:
     - description: Changed owners

packages/fim/manifest.yml

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: fim
 title: "File Integrity Monitoring"
-version: "1.14.1"
+version: "1.14.2"
 description: "The File Integrity Monitoring integration reports filesystem changes in real time."
 type: integration
 categories:
@@ -135,6 +135,9 @@ vars:
       Processors are used to reduce the number of fields in the exported event or to enhance the event with metadata.
       This executes in the agent before the logs are parsed.
       See [Processors](https://www.elastic.co/guide/en/beats/filebeat/current/filtering-and-enhancing-data.html) for details.
+agent:
+  privileges:
+    root: true
 owner:
   github: elastic/sec-linux-platform
   type: elastic

packages/network_traffic/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.30.1"
+  changes:
+    - description: capture root requirement
+      type: enhancement
+      link: https://github.com/elastic/integrations/issues/8647
 - version: "1.30.0"
   changes:
     - description: Publish deprecation notice for legacy behavior of `map_to_ecs`.

packages/network_traffic/manifest.yml

@@ -1,7 +1,7 @@
 format_version: "3.0.0"
 name: network_traffic
 title: Network Packet Capture
-version: "1.30.0"
+version: "1.30.1"
 description: Capture and analyze network traffic from a host with Elastic Agent.
 type: integration
 categories:
@@ -40,6 +40,9 @@ policy_templates:
             required: false
             show_user: false
             default: false
+agent:
+  privileges:
+    root: true
 owner:
   github: elastic/sec-linux-platform
   type: elastic

packages/system_audit/changelog.yml

@@ -1,4 +1,9 @@
 # newer versions go on top
+- version: "1.10.2"
+  changes:
+    - description: capture root requirement
+      type: enhancement
+      link: https://github.com/elastic/integrations/issues/8647
 - version: "1.10.1"
   changes:
     - description: Changed owners

packages/system_audit/manifest.yml

@@ -3,7 +3,7 @@ name: system_audit
 title: System Audit
 description: Collect various logs & metrics from System Audit modules with Elastic Agent.
 type: integration
-version: "1.10.1"
+version: "1.10.2"
 conditions:
   kibana:
     version: '^8.7.1'
@@ -27,6 +27,9 @@ policy_templates:
       - type: audit/system
         title: System Audit
         description: Collect various logs & metrics from System Audit modules with Elastic Agent.
+agent:
+  privileges:
+    root: true
 owner:
   github: elastic/sec-linux-platform
   type: elastic