-
Port to Windows. (Binary build to come with next release.)
-
GH-25: Add
files_columnstable that extracts selected columns
from on-disk files und sends them over to Zeek as a record. See
theREADMEfor documentation. -
GH-7: Extend the type system for table columns. We can now
represent addresses, booleans, counts, intervals, ports, records,
sets, times, and vectors end-to-end, so that they arrive as such
at Zeek. We also update our tables to use the new types where
appropriate. -
GH-34: Disable communication with a Zeek instance if it's package
version is too old. -
Add a 2nd 'differences' mode to queries where no initial snapshot
is provided. We now have (1) "snapshot-and-diffs", which sends an
initial snapshot first, followed by diffs; and (2) "diffs", which
sends an empty initial result and then just diffs. -
Add WebSocket transport layer compatible with Zeek 5.0. We now try
both Broker and WebSocket when connecting to Zeek. The former will
work with Zeek 4.0, the latter with Zeek 5.0. -
Add Broker version to agent handshake.
-
Support default values for table parameters.
-
Make exception available to table's data acquisition methods to signal failure.
-
Move numerical version number computation from CMake to runtime.
-
Fix deadlock in scheduler.
-
Fix potential dereference of unset optional.
-
Fix usage message.
-
Fix
assertthat could wrongly trigger. -
Fix console getting stuck on queries with errors, and reduce
unintended latency until query executes. -
Fix CI issue on Ubuntu.
-
Fix potential deadlock in unit test.
-
Fix trace-level debug logging.
-
Fix linker issue on Linux.
-
Make --test output available on failure in BTest suite.
-
Clean up unused state in Zeek communication code.
-
Format Zeek scripts with current zeek-format.
-
Update SQLite to 3.38.1 to give us built-in JSON support.
-
Update stduuid module.