Happy Release Day to everyone! We have launched Cribl v.4.3.1. While a lot was done to improve and fix a few things with this release being a maintenance release, we also have a lot great new features. Grab the latest download from https://cribl.io/download/!
Stream
- The Azure Blob Storage Collector and Google Cloud Storage Collector can now ingest and replay data in Parquet format. (This matches the S3 and Filesystem Collector' previously announced Parquet support.)
- The SNMP Source now supports SNMPv3 for user authentication and data privacy.
- The SNMP Trap Source now supports multiple users via SNMPv3, allowing you to receive traps from multiple devices configured with different users.
- Fleet management indicates which Edge Nodes are and are not eligible for upgrade.
- The SNMP Source now supports SNMPv3 for user authentication and data privacy.
- The SNMP Trap Source now supports multiple users via SNMPv3, allowing you to receive traps from multiple devices configured with different users.
- Commands allow you to manage searches and view dataset objects by running a search, these include:
.show queriesto display queued or running searches..cancel queriesto stop queued or running searches..show objectsto list objects included in a dataset.
- The export operator now supports appending data to lookup files, in addition to the existing create and overwrite options.
- Certain member permissions now restrict access to the
exportandsendoperators, as well as the newly introduced commands:.showand.cancelfor search management. - The new eventstats operator allows you to enrich events with aggregated data.
- The new dedup operator lets you efficiently remove duplicate events.
- Scheduled searches now support sending notifications to Amazon Simple Notification Service (SNS) topics and Slack.
- Virtual Tables enhance system observability by providing access to system definitions and properties through search queries. Unlike datasets, these tables are dynamically generated by Cribl Search.