New release. AI flexibility, a new app platform, and some killer upgrades
Platform
• New App Platform (Preview): Build custom apps, focused UIs, and dashboards that match how your teams actually work. Early look, come kick the tires.
• Additional BYOM Providers (LiteLLM and OpenAI Retail): More model options without giving up control over your data or infrastructure.
Stream
• Cribl Guard Model Choice and Agentic Recommendations: Choose the AI model that best fits your data, and get one-click recommendations you can review and act on.
• Shared Storage for Persistent Queues: Write backlogged data to NFS or S3 instead of local disk. Better protection during outages, cleaner scaling.
Edge
• Mac Unified Log Source: macOS logs now flow into the same pipelines as your Windows and Linux data. One less gap in fleet visibility.
Search
• Notebook Templates: Reusable investigation templates so teams move faster and stop reinventing the same workflows.
Lake
• Cribl Lake BYOS in Azure: Query data in-place from Azure Blob Storage. No moving it, no duplicating it.
Integrations
• OpenAI Compliance Source: Pull OpenAI compliance API data into Stream so security teams can monitor usage and audit activity in one place.
• ServiceNow Table API Source: Bring incident, change, and CMDB data from ServiceNow into Cribl for correlation and automation.
These are just the highlights. Check out the full release notes for Stream, Edge, Search, and Lake.
Cribl.Cloud customers: once your Organization is updated, just click Deploy.
On-prem customers can download the update now.