Falcon LogScale Collector 1.11.4 GA (2026-05-20)
| Version? | Type? | Release Date? | Config.Changes? |
|---|---|---|---|
| 1.11.4 | GA | 2026-05-20 | no |
Hide file hashes
| File | SHA256 Checksum | Hash File |
|---|---|---|
| linux_amd64.deb | 113982ffd2efc661e92cf64720e98d2da2f916ec2f6f62293f6d6e89989c1306 | Â |
| linux_amd64.rpm | 9e427607269617379da354b70ca3a9246b538925c8c9d30e8ddf2ebcb4c727c1 | Â |
| linux_arm64.deb | 6133530b8719e381193a41ec0bd870c7e3dd49cc3d105089233303a00463358b | Â |
| linux_arm64.rpm | c96a3137654b5f29b0bc191bfd82ae37146f57f4289c62965ce98fb694c5031d | Â |
| macOS_universal.pkg | 97ac0aa31fc06a85371b771d65b53968755fed1d4834d9a6ca44f90205410986 | Â |
| windows_amd64.msi | fd7e7b9c01d62c3664a3879b5634eb5bb6a8bcac17a06719368a45840cf82334 | Â |
Bug fixes and updates
Improvements, new features and functionality
Collecting Data
Added the
lineFlushTimeoutparameter to the File Source, allowing the timeout value to be configured beyond the previously hardcoded one-second limit. This is useful in environments where log lines are not completed within one second.Added a flag to the File Source which controls whether symlinks are followed. This flag was introduced in preparation for a future security hardening update that will disable symlink following by default. To preserve existing behaviour, the flag currently defaults to allowing symlink following.
When a symlink is discovered, the resolved path is logged under a
symlinkkey in the info-level log message "File identified", which is associated with each discovered file. On each platform the file open method has been revised to use the operating system's functionality to ensure that no symlinks are followed whenallowFollowSymlinksisfalse.
Other
The Go version has been updated to take advantage of the latest optimizations and security updates.
Increased the client timeout for HTTP requests in the Update service from 60 seconds to 300 seconds. This change addresses timeouts in environments with slow network connections.
Debugging
Improved TLS error messages to include the names of unknown Certificate Authorities (CAs). This change makes it easier to identify and debug TLS certificate-related issues.
Improved error logging in the Update service.
Fleet Management
Added system metrics for
allowInsecureTLS,allowInsecureHTTP, andallowFollowSymlinks. These metrics are used to provide discoverability of the usage of these flags in the Security Advisories section of Fleet Overview.
Bug Fixes
Collecting Data
Fixed a bug where the File Source would not follow symlinks in the directory part of the path.