{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":392231408,"defaultBranch":"master","name":"laurel","ownerLogin":"threathunters-io","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2021-08-03T07:35:24.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/86109767?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1725401300.0","currentOid":""},"activityList":{"items":[{"before":null,"after":"021eccee6351fbe5785eb7fa646e1d2f988d786e","ref":"refs/heads/dependabot/github_actions/dot-github/workflows/actions/download-artifact-4.1.7","pushedAt":"2024-09-03T22:08:20.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"Bump actions/download-artifact from 2.1.1 to 4.1.7 in /.github/workflows\n\nBumps [actions/download-artifact](https://github.com/actions/download-artifact) from 2.1.1 to 4.1.7.\n- [Release notes](https://github.com/actions/download-artifact/releases)\n- [Commits](https://github.com/actions/download-artifact/compare/v2.1.1...v4.1.7)\n\n---\nupdated-dependencies:\n- dependency-name: actions/download-artifact\n  dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] <support@github.com>","shortMessageHtmlLink":"Bump actions/download-artifact from 2.1.1 to 4.1.7 in /.github/workflows"}},{"before":"661f6288df904966aa69742c242a462f1e111ce1","after":"f552ee5c0bba949649355b566463fee8d60257bc","ref":"refs/heads/master","pushedAt":"2024-08-01T22:32:02.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix CentOS7 setup (6)","shortMessageHtmlLink":"Fix CentOS7 setup (6)"}},{"before":"888382eea1f407cf65c5d2994e103c9694f17dbb","after":"661f6288df904966aa69742c242a462f1e111ce1","ref":"refs/heads/master","pushedAt":"2024-08-01T22:28:36.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix CentOS7 setup (5)","shortMessageHtmlLink":"Fix CentOS7 setup (5)"}},{"before":"661f6288df904966aa69742c242a462f1e111ce1","after":null,"ref":"refs/tags/v0.6.3","pushedAt":"2024-08-01T22:28:30.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"}},{"before":"f10b9c661d2dffe63c43cf3e908247c25e56c080","after":"888382eea1f407cf65c5d2994e103c9694f17dbb","ref":"refs/heads/master","pushedAt":"2024-08-01T22:24:15.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix CentOS7 setup (4)","shortMessageHtmlLink":"Fix CentOS7 setup (4)"}},{"before":"f10b9c661d2dffe63c43cf3e908247c25e56c080","after":null,"ref":"refs/tags/v0.6.3","pushedAt":"2024-08-01T22:22:15.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"}},{"before":"554662c847d4e1655ba86bc06eda36ca0a8578de","after":"f10b9c661d2dffe63c43cf3e908247c25e56c080","ref":"refs/heads/master","pushedAt":"2024-08-01T21:59:44.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Release 0.6.3","shortMessageHtmlLink":"Release 0.6.3"}},{"before":"f5a33a3765a7834722ed813103b473bcbb304cfb","after":"554662c847d4e1655ba86bc06eda36ca0a8578de","ref":"refs/heads/master","pushedAt":"2024-08-01T18:50:02.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Don't fail setting log file ACLs with broken NSS backends\n\nPreviously we would set POSIX ACL entries on log files by performing\nan early UID lookup and passing a stringified version of the UID to\n`exacl::AclEntry::allow_user`.\n\nThe exacl documentation states that names and decimal strings are\naccepted. Apparently, exacl would try to look up the decimal string\nusing `getpwnam()` before considering that it should be parsed into a\nnumeric value. Unfortunately, this could cause a fatal error and\nterminate the Laurel process:\n\n    fatal error 'Error writing to filter log: Custom { kind: Other, error: Custom { kind: Other, error: \"Invalid ACL: entry 3: Connection refused (os errno 111)\" } }' at src/bin/laurel/main.rs:300,38\n\nWe still do an early uid lookup but pass the original string to exacl\ninstead of the decimal string.\n\nSteps to reproduce: System is configured with sssd for AD integration;\n/etc/nsswitch.conf contains the following lines:\n\n    passwd:         files systemd sss\n    group:          files systemd sss\n    shadow:         files sss\n    gshadow:        files\n\nIf the machine es rebooted and sssd happens to come up after auditd,\nlaurel fails to start and the error message above (or a similar one)\nis written to the auditd service's journal\n\nThis can also be reproduced without rebooting by stopping sssd and\nrestarting auditd (so laurel is restarted).","shortMessageHtmlLink":"Don't fail setting log file ACLs with broken NSS backends"}},{"before":"89fff20f0e86d8af51a6c3c53ef736dbe7b0b852","after":"f5a33a3765a7834722ed813103b473bcbb304cfb","ref":"refs/heads/master","pushedAt":"2024-08-01T18:39:41.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix CentOS7 setup (3)","shortMessageHtmlLink":"Fix CentOS7 setup (3)"}},{"before":"8763e7c7ee2d6f1f903d5357e5403ac83f09e630","after":"89fff20f0e86d8af51a6c3c53ef736dbe7b0b852","ref":"refs/heads/master","pushedAt":"2024-08-01T17:24:49.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"reformat","shortMessageHtmlLink":"reformat"}},{"before":"afe83c8777a99a25e56157825d49f786fcb34092","after":"8763e7c7ee2d6f1f903d5357e5403ac83f09e630","ref":"refs/heads/master","pushedAt":"2024-08-01T17:23:31.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix CentOS7 setup (2)","shortMessageHtmlLink":"Fix CentOS7 setup (2)"}},{"before":"ebb71fb61b0672f65d897c401ef677bd74786dbb","after":"afe83c8777a99a25e56157825d49f786fcb34092","ref":"refs/heads/master","pushedAt":"2024-07-23T19:16:24.000Z","pushType":"pr_merge","commitsCount":3,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"selinux: Allow laurel to connect to systemd-machined","shortMessageHtmlLink":"selinux: Allow laurel to connect to systemd-machined"}},{"before":"e6c9b8d9eec64a95a17804bb6ebb3375b40d60be","after":"ebb71fb61b0672f65d897c401ef677bd74786dbb","ref":"refs/heads/master","pushedAt":"2024-07-07T16:26:53.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Update syscall tables","shortMessageHtmlLink":"Update syscall tables"}},{"before":"d7b3b43b46c3c19219d576a7effcd6420079b3bc","after":"e6c9b8d9eec64a95a17804bb6ebb3375b40d60be","ref":"refs/heads/master","pushedAt":"2024-06-17T22:05:53.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Comment out read-users in default config","shortMessageHtmlLink":"Comment out read-users in default config"}},{"before":"04297b214eb6d2b45f886308bb03f4b99665c12f","after":"d7b3b43b46c3c19219d576a7effcd6420079b3bc","ref":"refs/heads/master","pushedAt":"2024-06-11T09:16:54.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Updated INSTALL.md to include the re-labeling for the auditd plugin.","shortMessageHtmlLink":"Updated INSTALL.md to include the re-labeling for the auditd plugin."}},{"before":"b99c9b6e33c4ff5ca1193a8953c5ab9cc48afdbd","after":"04297b214eb6d2b45f886308bb03f4b99665c12f","ref":"refs/heads/master","pushedAt":"2024-05-22T18:03:08.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix sockaddr test so that the right test is run for big-endian.","shortMessageHtmlLink":"Fix sockaddr test so that the right test is run for big-endian."}},{"before":"4e767e7cb0dad0449d79d07b0d0b60f91697a6ae","after":"b99c9b6e33c4ff5ca1193a8953c5ab9cc48afdbd","ref":"refs/heads/master","pushedAt":"2024-05-22T17:58:14.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Build release targets in non-release workflows","shortMessageHtmlLink":"Build release targets in non-release workflows"}},{"before":"971e09866b8321472542a79bae92a1c11549e9ac","after":"4e767e7cb0dad0449d79d07b0d0b60f91697a6ae","ref":"refs/heads/master","pushedAt":"2024-05-22T17:55:04.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix sockaddr test so that the right test is run for big-endian.","shortMessageHtmlLink":"Fix sockaddr test so that the right test is run for big-endian."}},{"before":"b99c9b6e33c4ff5ca1193a8953c5ab9cc48afdbd","after":"971e09866b8321472542a79bae92a1c11549e9ac","ref":"refs/heads/master","pushedAt":"2024-05-22T17:53:39.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix sockaddr test so that the right test is run for big-endian.","shortMessageHtmlLink":"Fix sockaddr test so that the right test is run for big-endian."}},{"before":"3587968efc945a4b65ff873d3db83275c0fa9d7d","after":"b99c9b6e33c4ff5ca1193a8953c5ab9cc48afdbd","ref":"refs/heads/master","pushedAt":"2024-05-19T09:50:55.000Z","pushType":"pr_merge","commitsCount":2,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Build release targets in non-release workflows","shortMessageHtmlLink":"Build release targets in non-release workflows"}},{"before":"efd03f948955bc7c0924b6efc92d6f47be6e959b","after":"3587968efc945a4b65ff873d3db83275c0fa9d7d","ref":"refs/heads/master","pushedAt":"2024-05-16T15:29:59.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Release 0.6.2","shortMessageHtmlLink":"Release 0.6.2"}},{"before":"555096828169f3f98a4e65ab625b99e48bf01e8a","after":"efd03f948955bc7c0924b6efc92d6f47be6e959b","ref":"refs/heads/master","pushedAt":"2024-05-16T15:28:05.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Make filtering first event per process optional\n\nThe first observed event in a process is special because it is used to\nuniquely identify that process when enriching PIDs. It is therefore\nuseful to keep this first event in the main log.","shortMessageHtmlLink":"Make filtering first event per process optional"}},{"before":"fa3c853b1661ec10fb3e265847d54c96adb0901c","after":"555096828169f3f98a4e65ab625b99e48bf01e8a","ref":"refs/heads/master","pushedAt":"2024-05-16T15:18:19.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Use current stable Rust to build non-release dynamic glibc version","shortMessageHtmlLink":"Use current stable Rust to build non-release dynamic glibc version"}},{"before":"a3d67cb6a9e0a4bb8d75c3b2492f511c60ac5919","after":"fa3c853b1661ec10fb3e265847d54c96adb0901c","ref":"refs/heads/master","pushedAt":"2024-05-15T18:13:03.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Bump MSRV to 1.70; update dependencies","shortMessageHtmlLink":"Bump MSRV to 1.70; update dependencies"}},{"before":"d91005d9b6ed58ff8a2c5a994bab90602c4b217c","after":"a3d67cb6a9e0a4bb8d75c3b2492f511c60ac5919","ref":"refs/heads/master","pushedAt":"2024-05-15T16:29:42.000Z","pushType":"push","commitsCount":2,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix two Clippy warnings","shortMessageHtmlLink":"Fix two Clippy warnings"}},{"before":"982b9dd4ec8c9e030c769bf519a33dcf29c1e617","after":"d91005d9b6ed58ff8a2c5a994bab90602c4b217c","ref":"refs/heads/master","pushedAt":"2024-05-15T16:18:45.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Fix typo","shortMessageHtmlLink":"Fix typo"}},{"before":"513bf69b164d78ec6c62e746f2d973f20bca7c9f","after":"982b9dd4ec8c9e030c769bf519a33dcf29c1e617","ref":"refs/heads/master","pushedAt":"2024-05-10T12:18:02.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"selinux: Allow reading access to systemd's userdbd\n\nTo access systemd's userdb through the socket, laurel needs access on\nlabels around systemd_userdbd_runtime_t. Debian and Redhat provide\ndifferent interfaces to achieve this.","shortMessageHtmlLink":"selinux: Allow reading access to systemd's userdbd"}},{"before":"eeedd505b2a9e6507771c445762ecb69728bce27","after":"513bf69b164d78ec6c62e746f2d973f20bca7c9f","ref":"refs/heads/master","pushedAt":"2024-04-23T18:28:08.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Remove obsolete notice from Coalesce::process_line","shortMessageHtmlLink":"Remove obsolete notice from Coalesce::process_line"}},{"before":"7be805b99707391b3980097cc43104e4094c5378","after":"eeedd505b2a9e6507771c445762ecb69728bce27","ref":"refs/heads/master","pushedAt":"2024-04-12T08:47:19.000Z","pushType":"push","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"fix typo: SADDRR -> SADDR","shortMessageHtmlLink":"fix typo: SADDRR -&gt; SADDR"}},{"before":"4a4fb53dc98d471aa90b02fc5455b2716c8de2d1","after":"7be805b99707391b3980097cc43104e4094c5378","ref":"refs/heads/master","pushedAt":"2024-04-04T17:45:40.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"hillu","name":"Hilko Bengen","path":"/hillu","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/173211?s=80&v=4"},"commit":{"message":"Small test improvements\n\n- Add helper function to find events by id\n- Don't expire process table when running tests","shortMessageHtmlLink":"Small test improvements"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0wM1QyMjowODoyMC4wMDAwMDBazwAAAASsEOht","endCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wNC0wNFQxNzo0NTo0MC4wMDAwMDBazwAAAAQoFMGo"}},"title":"Activity · threathunters-io/laurel"}