defended-net/malwatch

v1.5.0 Feature

This release adds 2 notable features for engineering teams evaluating rollout.

Published 29d Forensics & Incident Response

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

go linux malware scanner security server

Summary

AI summary

Updates CI, Tests, and Refactors across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Feature	Medium	Added sandbox clean action. Added sandbox clean action. Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	Integrated os.Root with fs handling and applied syscall hardening. Integrated os.Root with fs handling and applied syscall hardening. Source: llm_adapter@2026-05-21 Confidence: high	—
Dependency	Medium	Updated Go version to 1.25. Updated Go version to 1.25. Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	Improved panic error optics. Improved panic error optics. Source: llm_adapter@2026-05-21 Confidence: high	—
Refactor	Medium	Harden HTTP and S3 POST body handling. Harden HTTP and S3 POST body handling. Source: llm_adapter@2026-05-21 Confidence: high	—
Refactor	Medium	Refactored systemd template engine. Refactored systemd template engine. Source: llm_adapter@2026-05-21 Confidence: high	—
Other
Other	Medium	Removed local S3 when mocked in tests. Removed local S3 when mocked in tests. Source: llm_adapter@2026-05-21 Confidence: low	—
Other	Medium	Skipped S3 if no configuration is present in tests. Skipped S3 if no configuration is present in tests. Source: llm_adapter@2026-05-21 Confidence: low	—
Other	Medium	Uplifted all tests for os.Root compatibility. Uplifted all tests for os.Root compatibility. Source: llm_adapter@2026-05-21 Confidence: low	—
Other	Medium	Fixed golangci third_party exclude in CI configuration. Fixed golangci third_party exclude in CI configuration. Source: llm_adapter@2026-05-21 Confidence: low	—
Other	Medium	Refactored GitHub workflows. Refactored GitHub workflows. Source: llm_adapter@2026-05-21 Confidence: low	—

Full changelog

Changelog

Features

7eff3019f27ddcb9e444d3d0b643b00bb91a78cb feat: sandbox clean action
4edbd061c5e3ddc7a28b00a3d19aa6ee7a157151 feat: integrate os.Root with fs handling with syscall hardening

Fixes

86f9bf8effcfa5e6a36778be0cefab561dd6f22e fix: improve panic err optics

Refactors

2d1fc2dd4376d08a2517b771de6dff36864203c6 refactor: harden http and s3 post body handling
22997a62eeb1b83288603126f9cddaecbdaf4784 refactor: sysd template engine

Tests

fb8e391028d62c1a6f51acf4e3fd98c4631c405a test: remove local s3 when mocked
992aa930c0c24ae5ecf0e523e311ffa485f196c0 test: skip s3 if no cfg
d673678637247c7e4e2cfdef64129b64e1f17da7 test: uplift all tests for os.Root compatibility

CI

33f6f504ca22e48496a05c4dc1fe3512e31e12c8 ci: fix golangci third_party exclude
c20b98c0450900f7351a6cde4b35a429faffbc48 ci: refactor gh workflows

Dependencies

e71ceb875ef849c6edd6c0314a47a68bde81167e dep: go 1.25

Docs

5bdabc401b8935633cb487c4710f67b34969943e docs: bump download release

Please review our documentation.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track defended-net/malwatch

Get notified when new releases ship.

About defended-net/malwatch

All releases →