Refactor: Remove Rego signature support #4426

yanivagman · 2024-12-12T15:43:46Z

1. Explain what the PR does

This PR removes support for Rego-based signatures in Tracee.

Rego signatures, while easier to write than compiled Go signatures, introduced performance overhead. This removal simplifies the Tracee codebase and prepares for the future introduction of Wasm-based signatures, which will offer both improved performance and extended capabilities.

In the meantime, users can leverage the following:

Go-based signatures: For optimal performance and custom event handling.
Tracee policies: For basic event filtering needs, providing a convenient way to define filters directly within the policy.

Tracee policies currently address the most common use case for signatures. Future development will focus on expanding Tracee's capabilities to accommodate more advanced scenarios.

2. Explain how to test it

3. Other comments

geyslan

LGTM. There's only a unit test err, perhaps related to formatting.

This commit removes support for Rego-based signatures in Tracee. Rego signatures, while easier to write than compiled Go signatures, introduced performance overhead. This removal simplifies the Tracee codebase and prepares for the future introduction of Wasm-based signatures, which will offer both improved performance and extended capabilities. In the meantime, users can leverage the following: - **Go-based signatures:** For optimal performance and custom event handling. - **Tracee policies:** For basic event filtering needs, providing a convenient way to define filters directly within the policy. Tracee policies currently address the most common use case for signatures. Future development will focus on expanding Tracee's capabilities to accommodate more advanced scenarios.

This commit removes the 'Verify Signatures' step from the GitHub Actions workflow as it was specifically testing for rego signatures, which are no longer supported in the project.

github-actions bot assigned yanivagman Dec 12, 2024

github-actions bot added area/signatures kind/documentation area/testing area/UX area/build area/flags labels Dec 12, 2024

yanivagman force-pushed the remove_rego_support branch from 7e02458 to 97bf354 Compare December 12, 2024 16:09

geyslan approved these changes Dec 12, 2024

View reviewed changes

yanivagman force-pushed the remove_rego_support branch 6 times, most recently from d986657 to 7a2674e Compare December 15, 2024 16:16

yanivagman linked an issue Dec 18, 2024 that may be closed by this pull request

Drop rego support #4440

Closed

yanivagman added 2 commits December 18, 2024 09:44

chore: Remove signature verification step from GitHub Actions

345166f

This commit removes the 'Verify Signatures' step from the GitHub Actions workflow as it was specifically testing for rego signatures, which are no longer supported in the project.

yanivagman force-pushed the remove_rego_support branch from 7a2674e to 345166f Compare December 18, 2024 07:44

yanivagman merged commit b56ee73 into aquasecurity:main Dec 18, 2024
34 checks passed

yanivagman deleted the remove_rego_support branch December 18, 2024 08:37

geyslan mentioned this pull request Jan 23, 2025

Parse argument in a separate argument instead of inline #3008

Open

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Refactor: Remove Rego signature support #4426

Refactor: Remove Rego signature support #4426

Refactor: Remove Rego signature support #4426

Refactor: Remove Rego signature support #4426

Conversation

1. Explain what the PR does

2. Explain how to test it

3. Other comments

Choose a reason for hiding this comment