Skip to content

dpanic/os-kickstart

v1.1.0 Feature

This release adds 2 notable features for engineering teams evaluating rollout.

Published 2mo Server & OS Management
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Summary

AI summary

AppArmor monitor module adds continuous monitoring with alerts and NIC ring buffer tuning maximizes RX/TX buffers.

Full changelog

What's New

  • AppArmor monitor module — continuous monitoring with systemd timer, Slack/Mattermost alerts for DENIED events, profile tampering, and service health checks
  • NIC ring buffer tuning — kernel autotune now maximizes RX/TX ring buffers on active interfaces

Improvements

  • AppArmor monitor: suppress alerts for ALLOWED-only events (complain mode noise)
  • AppArmor monitor: move hostname into notification table for cleaner layout
  • AppArmor scripts: handle --update flag, fix webhook URL passing
  • Mattermost: fix table rendering with 3-dash separators and real newlines

Fixes

  • Remove unused newBannerModel function and latestStyle variable
  • Add package comment to tui package (staticcheck ST1000)
  • Move lib.sh into modules/, remove legacy main.sh
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track dpanic/os-kickstart

Get notified when new releases ship.

Sign up free

About dpanic/os-kickstart

All releases →

Related context

Beta — feedback welcome: [email protected]