May 26, 2021
Summary of Changes/Improvements
- Lacework agent v3.9.5 and higher supports Google Kubernetes Engine (GKE) container optimized operating systems with containerd run time.
- Introduced a new ContainerRunTime property that you can configure in the config.json file to specify the container run time as docker or containerd. If you set the ContainerRunTime property in the agent configuration file (config.json), the agent uses the new parameter (which can be any valid URL, TCP endpoint, or a Unix socket) as the endpoint. If you don’t configure this property, the agent uses the default endpoint depending on the container engine runtime on the system. For details, see Configure Agent Behavior in config.json File.
- Fixed the Ubuntu 20 host OS scan issue. If the agent container is deployed as a container in containerd run time, Lacework scans the host packages. Lacework also scans host packages if the agent is deployed as a process (not as a container).
- Fixed the
New External Server IP Addressalert to include details of the process that initiates the outgoing connection for AWS EKS environments (where the source NAT is enabled by default).
- Improved product stability by fixing some race conditions that occasionally caused the agent to crash.