Skip to content

Handlers, Baselines, Security Hardening
Compare
Choose a tag to compare
@sfc-gh-gbutzi sfc-gh-gbutzi released this 07 May 15:31
· 590 commits to master since this release
v1.7.0
776ef5a

Custom Handlers

The Alert Handler is replaced with the Alert Dispatcher with plug-in handlers in the ./src/runners/handlers directory, and the Jira Handler is now complemented by the Slack Handler. How to develop new ones is documented in the refreshed CONTRIBUTING document.

New Ingestion Scripts

We have added three new ingestion scripts —

  • ec2_describe_instances.py
  • iam_credential_report.py
  • list_aws_accounts.py

Installer Improvements

The installer has several minor bug fixes, as well as new parameters which let you customize what it does —

--admin-role to set a SnowAlert administrator other than ACCOUNTADMIN
--nosamples to install SnowAlert without sample rules
--config-account to auth with a named account inside your `~/.snowsql/config`

Optimized Alert Query Runner (AQR)

We've gone through a performance review and have begun optimizing how long alerts execute to best utilize your Snowflake resources, we've also added multithreading to the AQR. Because the queries still all MERGE into the same table, the bulk of the benefit from this optimization is expected in a future release.

Easier Contribution

We've rewritten the CONTRIBUTING intro and have created a more thorough automated test suite to make it easier to test changes and improvements.

(beta) Baselines

We've added an R installation to our main container and a Baseline Runner that lets you define tables you'd like populate with statistical baselines that would take too long to include in Alert Queries on-the-fly. We've yet to sand down the corners on this feature, document the functionality, and add it to the WebUI, but we are using it internally so feel free to read the code or reach out at [email protected] if you'd like to help us test or develop it.

(beta) WebUI moving towards launch

While the WebUI is still heavily a work-in-progress, it went through user feedback and an initial security hardening. The WebUI and the runners have been patched for a minor SQL injection vulnerability and other fixes that will prepare us to launch soon.

Assets 2
Loading