From 1968de4c8c58ead613e34125029fbe931112751b Mon Sep 17 00:00:00 2001 From: Noah Talerman Date: Thu, 5 May 2022 11:53:04 -0400 Subject: [PATCH 1/4] Add changelog and bump versions --- CHANGELOG.md | 40 +++++++++++++++++++ changes/4176-orbit-fix-selinux-permissions | 2 - changes/centos-ubuntu-uninstall-cleanup | 1 - ...-fleetctl-package-deb-rpm-deprecation-warn | 1 - changes/fleetctl-preview-support-custom-tuf | 1 - ...duce-organization-settings-form-complexity | 1 - ...2316-add-osquery-min-last-opened-at-config | 1 - .../issue-2316-expose-last-opened-at-software | 1 - ...-3124-better-empty-states-for-host-details | 1 - .../issue-3446-fleetctl-query-host-not-found | 1 - ...e-3912-display-optional-fields-as-optional | 1 - changes/issue-4574-show-query-in-live-results | 1 - changes/issue-4746-device-mapping | 1 - ...780-avoid-ingesting-profiles-without-email | 1 - ...ssue-4852-search-labels-breaks-with-atsign | 1 - changes/issue-4925-fleet-desktop-linux | 1 - ...issue-5005-bug-fix-query-name-for-schedule | 1 - changes/issue-5057-zendesk | 1 - .../issue-5066-huminize-durations-in-fleetctl | 2 - changes/issue-5244-revert-sso-paths-to-v1 | 1 - changes/issue-5268-fix-fleet-serve-panic | 1 - changes/issue-5315-consistent-empty-states | 1 - changes/issue-5319-json-arrayagg | 2 - changes/issue-5338-change-jira-ticket-type | 1 - charts/fleet/Chart.yaml | 4 +- charts/fleet/values.yaml | 2 +- .../dogfood/terraform/aws/variables.tf | 2 +- .../dogfood/terraform/gcp/variables.tf | 2 +- tools/fleetctl-npm/package.json | 2 +- 29 files changed, 46 insertions(+), 32 deletions(-) delete mode 100644 changes/4176-orbit-fix-selinux-permissions delete mode 100644 changes/centos-ubuntu-uninstall-cleanup delete mode 100644 changes/fix-fleetctl-package-deb-rpm-deprecation-warn delete mode 100644 changes/fleetctl-preview-support-custom-tuf delete mode 100644 changes/issue-1308-reduce-organization-settings-form-complexity delete mode 100644 changes/issue-2316-add-osquery-min-last-opened-at-config delete mode 100644 changes/issue-2316-expose-last-opened-at-software delete mode 100644 changes/issue-3124-better-empty-states-for-host-details delete mode 100644 changes/issue-3446-fleetctl-query-host-not-found delete mode 100644 changes/issue-3912-display-optional-fields-as-optional delete mode 100644 changes/issue-4574-show-query-in-live-results delete mode 100644 changes/issue-4746-device-mapping delete mode 100644 changes/issue-4780-avoid-ingesting-profiles-without-email delete mode 100644 changes/issue-4852-search-labels-breaks-with-atsign delete mode 100644 changes/issue-4925-fleet-desktop-linux delete mode 100644 changes/issue-5005-bug-fix-query-name-for-schedule delete mode 100644 changes/issue-5057-zendesk delete mode 100644 changes/issue-5066-huminize-durations-in-fleetctl delete mode 100644 changes/issue-5244-revert-sso-paths-to-v1 delete mode 100644 changes/issue-5268-fix-fleet-serve-panic delete mode 100644 changes/issue-5315-consistent-empty-states delete mode 100644 changes/issue-5319-json-arrayagg delete mode 100644 changes/issue-5338-change-jira-ticket-type diff --git a/CHANGELOG.md b/CHANGELOG.md index 5008da909f4..e3d75fc3ee5 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,3 +1,43 @@ +## Fleet 4.14.0 (May 5, 2022) + +* Add beta support for Jira and Zendesk integrations. This allows users to configure Fleet to + automatically create a Jira issue or Zendesk ticket when a new vulnerability (CVE) is detected on + your hosts. + +* Add a "Show query" button on the live query results page. This allows users to double-check the + syntax used and compare this to their results without leaving the current view. + +* Add a [Postman + collection](https://www.postman.com/fleetdm/workspace/fleet/collection/18010889-c5604fe6-7f6c-44bf-a60c-46650d358dde?ctx=documentation) + for the Fleet API. This allows users to easily interact with Fleet's API routes so that they can + build and test integrations. + +* Add beta support for Fleet Desktop on Linux. Fleet Desktop allows the device user to see +information about their device. To add Fleet Desktop to a Linux device, first add the +`--fleet-desktop` flag to the `fleectl package` command to generate a Fleet-osquery installer that +includes Fleet Desktop. Then, open this installer on the device. + +* Improve error message retuned when running `fleetctl query` command with missing or misspelled hosts. + +* Improve the **Settings** pages in the the Fleet UI. + +* Improve the empty states and forms on the **Policies** page, **Queries** page, and **Host details** page in the Fleet UI. + +- All duration settings returned by `fleetctl get config --include-server-config` were changed from +nanoseconds to an easy to read format. + +* Fix a bug in which the Fleet UI would render an empty Google Chrome profiles on the **Host details** page. + +* Fix a bug in which the Fleet UI would error when entering the "@" characters in the **Search targets** field. + +* Fix a bug in which a scheduled query would display the incorrect name when editing the query on + the **Schedule** page. + +* Fix a bug in which a deprecation warning would be displayed when generating a `deb` or `rpm` + Fleet-osquery package when running the `fleetctl package` command. + +* Fix a bug that caused panic errors when running the `fleet serve --debug` command. + ## Fleet 4.13.2 (Apr 25, 2022) * Fix a bug with os versions not being updated. Affected deployments using MySQL < 5.7.22 or equivalent AWS RDS Aurora < 2.10.1. diff --git a/changes/4176-orbit-fix-selinux-permissions b/changes/4176-orbit-fix-selinux-permissions deleted file mode 100644 index d1167a799bf..00000000000 --- a/changes/4176-orbit-fix-selinux-permissions +++ /dev/null @@ -1,2 +0,0 @@ -* Change install path to /opt/orbit. Fixes a permissions issue on platforms with SELinux enabled. - See [fleetdm/fleet#4176](https://github.com/fleetdm/fleet/issues/4176) for more details. diff --git a/changes/centos-ubuntu-uninstall-cleanup b/changes/centos-ubuntu-uninstall-cleanup deleted file mode 100644 index 983592f3d5a..00000000000 --- a/changes/centos-ubuntu-uninstall-cleanup +++ /dev/null @@ -1 +0,0 @@ -* Add cleanup on `deb`/`rpm` uninstall. diff --git a/changes/fix-fleetctl-package-deb-rpm-deprecation-warn b/changes/fix-fleetctl-package-deb-rpm-deprecation-warn deleted file mode 100644 index b62a5bfacde..00000000000 --- a/changes/fix-fleetctl-package-deb-rpm-deprecation-warn +++ /dev/null @@ -1 +0,0 @@ -* Fix deprecation warning message when generating `deb` and `rpm` packages with `fleetctl package`. diff --git a/changes/fleetctl-preview-support-custom-tuf b/changes/fleetctl-preview-support-custom-tuf deleted file mode 100644 index 17658a76e2e..00000000000 --- a/changes/fleetctl-preview-support-custom-tuf +++ /dev/null @@ -1 +0,0 @@ -* Support `fleetctl preview` running with custom TUF server. diff --git a/changes/issue-1308-reduce-organization-settings-form-complexity b/changes/issue-1308-reduce-organization-settings-form-complexity deleted file mode 100644 index 37123c76e5d..00000000000 --- a/changes/issue-1308-reduce-organization-settings-form-complexity +++ /dev/null @@ -1 +0,0 @@ -* Revamp Organization settings page into bite-size forms \ No newline at end of file diff --git a/changes/issue-2316-add-osquery-min-last-opened-at-config b/changes/issue-2316-add-osquery-min-last-opened-at-config deleted file mode 100644 index 7d3672ec969..00000000000 --- a/changes/issue-2316-add-osquery-min-last-opened-at-config +++ /dev/null @@ -1 +0,0 @@ -* Add the `osquery.min_software_last_opened_at_diff` configuration option. diff --git a/changes/issue-2316-expose-last-opened-at-software b/changes/issue-2316-expose-last-opened-at-software deleted file mode 100644 index 40fdf028275..00000000000 --- a/changes/issue-2316-expose-last-opened-at-software +++ /dev/null @@ -1 +0,0 @@ -* Expose the "last opened at" information about software on the host details API endpoint (macOS only). diff --git a/changes/issue-3124-better-empty-states-for-host-details b/changes/issue-3124-better-empty-states-for-host-details deleted file mode 100644 index a255e99439d..00000000000 --- a/changes/issue-3124-better-empty-states-for-host-details +++ /dev/null @@ -1 +0,0 @@ -* Improve empty state messages on host details page \ No newline at end of file diff --git a/changes/issue-3446-fleetctl-query-host-not-found b/changes/issue-3446-fleetctl-query-host-not-found deleted file mode 100644 index 2bb0a1b384b..00000000000 --- a/changes/issue-3446-fleetctl-query-host-not-found +++ /dev/null @@ -1 +0,0 @@ -* Improve error message when using fleetctl query and no hosts provided. diff --git a/changes/issue-3912-display-optional-fields-as-optional b/changes/issue-3912-display-optional-fields-as-optional deleted file mode 100644 index 83d3021af87..00000000000 --- a/changes/issue-3912-display-optional-fields-as-optional +++ /dev/null @@ -1 +0,0 @@ -* UI hints that fields are optional for new query and new policy \ No newline at end of file diff --git a/changes/issue-4574-show-query-in-live-results b/changes/issue-4574-show-query-in-live-results deleted file mode 100644 index 731406bf596..00000000000 --- a/changes/issue-4574-show-query-in-live-results +++ /dev/null @@ -1 +0,0 @@ -* Users can view query SQL from the live query results page \ No newline at end of file diff --git a/changes/issue-4746-device-mapping b/changes/issue-4746-device-mapping deleted file mode 100644 index d319defccfd..00000000000 --- a/changes/issue-4746-device-mapping +++ /dev/null @@ -1 +0,0 @@ -- Add `device_mapping` to `GET /hosts` endpoint response diff --git a/changes/issue-4780-avoid-ingesting-profiles-without-email b/changes/issue-4780-avoid-ingesting-profiles-without-email deleted file mode 100644 index e0bc765f112..00000000000 --- a/changes/issue-4780-avoid-ingesting-profiles-without-email +++ /dev/null @@ -1 +0,0 @@ -* Prevent ingestion of Google Chrome profiles without an associated email and clean rows with empty emails. Fixes issue 4780 diff --git a/changes/issue-4852-search-labels-breaks-with-atsign b/changes/issue-4852-search-labels-breaks-with-atsign deleted file mode 100644 index bbd3345200f..00000000000 --- a/changes/issue-4852-search-labels-breaks-with-atsign +++ /dev/null @@ -1 +0,0 @@ -- Properly handle '@' characters when searching for a target host. diff --git a/changes/issue-4925-fleet-desktop-linux b/changes/issue-4925-fleet-desktop-linux deleted file mode 100644 index 04ed91f9d89..00000000000 --- a/changes/issue-4925-fleet-desktop-linux +++ /dev/null @@ -1 +0,0 @@ -* Add (beta) support for Fleet Desktop to linux. diff --git a/changes/issue-5005-bug-fix-query-name-for-schedule b/changes/issue-5005-bug-fix-query-name-for-schedule deleted file mode 100644 index 22c0db72c74..00000000000 --- a/changes/issue-5005-bug-fix-query-name-for-schedule +++ /dev/null @@ -1 +0,0 @@ -* Bug fix: Display query name for editing a schedule \ No newline at end of file diff --git a/changes/issue-5057-zendesk b/changes/issue-5057-zendesk deleted file mode 100644 index 6d47300ff62..00000000000 --- a/changes/issue-5057-zendesk +++ /dev/null @@ -1 +0,0 @@ -Add zendesk integration for vulnerabilities automation \ No newline at end of file diff --git a/changes/issue-5066-huminize-durations-in-fleetctl b/changes/issue-5066-huminize-durations-in-fleetctl deleted file mode 100644 index 5797ae0b293..00000000000 --- a/changes/issue-5066-huminize-durations-in-fleetctl +++ /dev/null @@ -1,2 +0,0 @@ -- All duration settings returned by `fleetctl get config --include-server-config` were changed from - nanoseconds to an easy to read format. diff --git a/changes/issue-5244-revert-sso-paths-to-v1 b/changes/issue-5244-revert-sso-paths-to-v1 deleted file mode 100644 index 35024e52a87..00000000000 --- a/changes/issue-5244-revert-sso-paths-to-v1 +++ /dev/null @@ -1 +0,0 @@ -* Revert SSO-related URLs to use `/api/v1` instead of `/api/latest`. diff --git a/changes/issue-5268-fix-fleet-serve-panic b/changes/issue-5268-fix-fleet-serve-panic deleted file mode 100644 index d487f2992fe..00000000000 --- a/changes/issue-5268-fix-fleet-serve-panic +++ /dev/null @@ -1 +0,0 @@ -* Fix a panic when running `fleet serve --debug` due to duplicate registration of `/debug/` paths. diff --git a/changes/issue-5315-consistent-empty-states b/changes/issue-5315-consistent-empty-states deleted file mode 100644 index f8c4cead481..00000000000 --- a/changes/issue-5315-consistent-empty-states +++ /dev/null @@ -1 +0,0 @@ -* Fix policies empty state to match other empty states, fix link styling \ No newline at end of file diff --git a/changes/issue-5319-json-arrayagg b/changes/issue-5319-json-arrayagg deleted file mode 100644 index eec36a06701..00000000000 --- a/changes/issue-5319-json-arrayagg +++ /dev/null @@ -1,2 +0,0 @@ -* Remove usage of JSON_ARRAYAGG in sql queries. Not supported in MySQL < 5.7.22 and - AWS RDS Aurora used in Terraform. diff --git a/changes/issue-5338-change-jira-ticket-type b/changes/issue-5338-change-jira-ticket-type deleted file mode 100644 index 7465a3fceac..00000000000 --- a/changes/issue-5338-change-jira-ticket-type +++ /dev/null @@ -1 +0,0 @@ -* Change Jira ticket type from "Bug" to "Task" when reporting vulnerabilities with the Jira integration automation. diff --git a/charts/fleet/Chart.yaml b/charts/fleet/Chart.yaml index 96f0ab49f36..8bcd7688e2c 100644 --- a/charts/fleet/Chart.yaml +++ b/charts/fleet/Chart.yaml @@ -4,8 +4,8 @@ name: fleet keywords: - fleet - osquery -version: v4.13.2 +version: v4.14.0 home: https://github.com/fleetdm/fleet sources: - https://github.com/fleetdm/fleet.git -appVersion: v4.13.2 +appVersion: v4.14.0 diff --git a/charts/fleet/values.yaml b/charts/fleet/values.yaml index ec32f521c09..e2faf820cd8 100644 --- a/charts/fleet/values.yaml +++ b/charts/fleet/values.yaml @@ -2,7 +2,7 @@ # All settings related to how Fleet is deployed in Kubernetes hostName: fleet.localhost replicas: 3 # The number of Fleet instances to deploy -imageTag: v4.13.2 # Version of Fleet to deploy +imageTag: v4.14.0 # Version of Fleet to deploy createIngress: true # Whether or not to automatically create an Ingress ingressAnnotations: {} # Additional annotation to add to the Ingress podAnnotations: {} # Additional annotations to add to the Fleet pod diff --git a/infrastructure/dogfood/terraform/aws/variables.tf b/infrastructure/dogfood/terraform/aws/variables.tf index ae5d9fb77e9..2b1e2356d16 100644 --- a/infrastructure/dogfood/terraform/aws/variables.tf +++ b/infrastructure/dogfood/terraform/aws/variables.tf @@ -56,7 +56,7 @@ variable "database_name" { variable "fleet_image" { description = "the name of the container image to run" - default = "fleetdm/fleet:v4.13.2" + default = "fleetdm/fleet:v4.14.0" } variable "software_inventory" { diff --git a/infrastructure/dogfood/terraform/gcp/variables.tf b/infrastructure/dogfood/terraform/gcp/variables.tf index 6fb61581695..a8ac0c6b548 100644 --- a/infrastructure/dogfood/terraform/gcp/variables.tf +++ b/infrastructure/dogfood/terraform/gcp/variables.tf @@ -68,5 +68,5 @@ variable "redis_mem" { } variable "image" { - default = "fleet:v4.13.2" + default = "fleet:v4.14.0" } diff --git a/tools/fleetctl-npm/package.json b/tools/fleetctl-npm/package.json index cc9c495d8c5..ae933023d95 100644 --- a/tools/fleetctl-npm/package.json +++ b/tools/fleetctl-npm/package.json @@ -1,6 +1,6 @@ { "name": "fleetctl", - "version": "v4.13.2", + "version": "v4.14.0", "description": "Installer for the fleetctl CLI tool", "bin": { "fleetctl": "./run.js" From dffb0b784f64abca0f50ed386e25810692e9f26a Mon Sep 17 00:00:00 2001 From: Noah Talerman Date: Mon, 9 May 2022 10:14:52 -0400 Subject: [PATCH 2/4] Update changelog --- CHANGELOG.md | 5 ++++- changes/4176-orbit-fix-selinux-permissions | 2 -- changes/issue-5437-validate-https-jira | 1 - changes/issue-5469-fix-mac-software-tooltip | 1 - changes/issue-5563-remove-last-integration | 1 - changes/issue-5565-sunset-edit-integration | 1 - changes/issue-5595-settings-validated | 1 - 7 files changed, 4 insertions(+), 8 deletions(-) delete mode 100644 changes/4176-orbit-fix-selinux-permissions delete mode 100644 changes/issue-5437-validate-https-jira delete mode 100644 changes/issue-5469-fix-mac-software-tooltip delete mode 100644 changes/issue-5563-remove-last-integration delete mode 100644 changes/issue-5565-sunset-edit-integration delete mode 100644 changes/issue-5595-settings-validated diff --git a/CHANGELOG.md b/CHANGELOG.md index e3d75fc3ee5..950db83fd11 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,4 +1,4 @@ -## Fleet 4.14.0 (May 5, 2022) +## Fleet 4.14.0 (May 9, 2022) * Add beta support for Jira and Zendesk integrations. This allows users to configure Fleet to automatically create a Jira issue or Zendesk ticket when a new vulnerability (CVE) is detected on @@ -26,6 +26,9 @@ includes Fleet Desktop. Then, open this installer on the device. - All duration settings returned by `fleetctl get config --include-server-config` were changed from nanoseconds to an easy to read format. +* Fix a bug in which the "Bundle identifier" tooltips displayed on **Host details > Software** did not + render correctly. + * Fix a bug in which the Fleet UI would render an empty Google Chrome profiles on the **Host details** page. * Fix a bug in which the Fleet UI would error when entering the "@" characters in the **Search targets** field. diff --git a/changes/4176-orbit-fix-selinux-permissions b/changes/4176-orbit-fix-selinux-permissions deleted file mode 100644 index e0cb7684aaf..00000000000 --- a/changes/4176-orbit-fix-selinux-permissions +++ /dev/null @@ -1,2 +0,0 @@ -- Change the install path to /opt/orbit. This fixes a permissions issue on platforms with SELinux enabled. - See [fleetdm/fleet#4176](https://github.com/fleetdm/fleet/issues/4176) for more details. diff --git a/changes/issue-5437-validate-https-jira b/changes/issue-5437-validate-https-jira deleted file mode 100644 index 2280479d811..00000000000 --- a/changes/issue-5437-validate-https-jira +++ /dev/null @@ -1 +0,0 @@ -* Jira integration UI validates URL protocol to use https \ No newline at end of file diff --git a/changes/issue-5469-fix-mac-software-tooltip b/changes/issue-5469-fix-mac-software-tooltip deleted file mode 100644 index 5816e16aeee..00000000000 --- a/changes/issue-5469-fix-mac-software-tooltip +++ /dev/null @@ -1 +0,0 @@ -* Bundle identifier tooltip shows on mac details > software \ No newline at end of file diff --git a/changes/issue-5563-remove-last-integration b/changes/issue-5563-remove-last-integration deleted file mode 100644 index 7f5a644a8ae..00000000000 --- a/changes/issue-5563-remove-last-integration +++ /dev/null @@ -1 +0,0 @@ -* Bug fix: Integrations page updates to 0 integrations when the last integration is removed \ No newline at end of file diff --git a/changes/issue-5565-sunset-edit-integration b/changes/issue-5565-sunset-edit-integration deleted file mode 100644 index 47b13500f99..00000000000 --- a/changes/issue-5565-sunset-edit-integration +++ /dev/null @@ -1 +0,0 @@ -* Remove the ability to edit a Jira integration as integrations fields are unique to each integration \ No newline at end of file diff --git a/changes/issue-5595-settings-validated b/changes/issue-5595-settings-validated deleted file mode 100644 index 836bdd062e8..00000000000 --- a/changes/issue-5595-settings-validated +++ /dev/null @@ -1 +0,0 @@ -* Fix settings validations for checkboxes/dropdowns \ No newline at end of file From b1420913955bedc54b8b9196c4452c223fc2c147 Mon Sep 17 00:00:00 2001 From: Noah Talerman Date: Mon, 9 May 2022 12:21:45 -0400 Subject: [PATCH 3/4] Bump version in example Kubernetes YAML --- docs/Deploying/Server-Installation.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/docs/Deploying/Server-Installation.md b/docs/Deploying/Server-Installation.md index c759b4324a6..2ba0138e719 100644 --- a/docs/Deploying/Server-Installation.md +++ b/docs/Deploying/Server-Installation.md @@ -445,7 +445,7 @@ spec: spec: containers: - name: fleet - image: fleetdm/fleet:4.13.2 + image: fleetdm/fleet:4.14.0 env: - name: FLEET_MYSQL_ADDRESS valueFrom: From 0588a91b13861b5cf8a12fd4673719574e7d20b4 Mon Sep 17 00:00:00 2001 From: Noah Talerman Date: Mon, 9 May 2022 12:47:49 -0400 Subject: [PATCH 4/4] Add last_opened_at entry to changelog --- CHANGELOG.md | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 950db83fd11..04abcfee9f2 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -8,7 +8,7 @@ syntax used and compare this to their results without leaving the current view. * Add a [Postman - collection](https://www.postman.com/fleetdm/workspace/fleet/collection/18010889-c5604fe6-7f6c-44bf-a60c-46650d358dde?ctx=documentation) + Collection](https://www.postman.com/fleetdm/workspace/fleet/collection/18010889-c5604fe6-7f6c-44bf-a60c-46650d358dde?ctx=documentation) for the Fleet API. This allows users to easily interact with Fleet's API routes so that they can build and test integrations. @@ -17,10 +17,12 @@ information about their device. To add Fleet Desktop to a Linux device, first ad `--fleet-desktop` flag to the `fleectl package` command to generate a Fleet-osquery installer that includes Fleet Desktop. Then, open this installer on the device. -* Improve error message retuned when running `fleetctl query` command with missing or misspelled hosts. +* Add `last_opened_at` property, for macOS software, to the **Host details** API route (`GET /hosts/{id}`). * Improve the **Settings** pages in the the Fleet UI. +* Improve error message retuned when running `fleetctl query` command with missing or misspelled hosts. + * Improve the empty states and forms on the **Policies** page, **Queries** page, and **Host details** page in the Fleet UI. - All duration settings returned by `fleetctl get config --include-server-config` were changed from