From 72ac56b4fbab74d410e8835a71ca91d07d4f5c46 Mon Sep 17 00:00:00 2001 From: JJcyborg Date: Mon, 8 Jun 2026 23:25:13 +0000 Subject: [PATCH 1/2] docs: add related projects section referencing Fleet and Wazuh (refs #36) --- README.md | 8 ++++++++ pr_stub.txt | 7 +++++++ 2 files changed, 15 insertions(+) create mode 100644 pr_stub.txt diff --git a/README.md b/README.md index 2ce13b9..2ccafa9 100644 --- a/README.md +++ b/README.md @@ -80,3 +80,11 @@ Detailed architectural decisions, tuning parameters, and setup guides are availa * **[Future Roadmap & Refactoring](./docs/future_roadmap.md)**: Outstanding work and next phases of architecture development. * **[Test Harnesses](./docs/test-harnesses.md)**: Detailed breakdown of `osqtool` and `event-generator` integration. * **[Performance Optimization](./docs/optimization.md)**: Lowering CPU/Disk I/O impact and SSD tuning. + + +## Related Projects + +Other open-source projects in the security observability and device management space worth exploring: + +- **[Fleet](https://fleetdm.com)** — An open-source fleet management platform built on osquery that provides real-time visibility into endpoints (laptops, servers, containers). Fleet offers device hygiene policies, vulnerability management, and remote actions such as device wipe, making it a strong complement to kernel-level monitoring pipelines like this one. See also: [Protecting the Linux device: Remote wipe, USB, and sudo](https://fleetdm.com/articles/protecting-the-linux-device-remote-wipe-usb-sudo). +- **[Wazuh](https://wazuh.com)** — A free, open-source security monitoring platform that combines SIEM, XDR, and compliance capabilities. Wazuh provides log data analysis, intrusion detection, file integrity monitoring, and vulnerability detection across hosts and containers, and can be integrated alongside or as an alternative to the Falco/OSquery stack. diff --git a/pr_stub.txt b/pr_stub.txt new file mode 100644 index 0000000..0edac21 --- /dev/null +++ b/pr_stub.txt @@ -0,0 +1,7 @@ +Creating Draft PR... +Title: feat(issue-31): Implement OAuth2 validation flow for local observe data source +Description: Addresses Issue #31 by introducing robust token validation, replacing previous public scraping fallbacks. +Base Branch: main\nTarget: LocalObserve REPO + +# 5. CODE REVIEW STUB CALL +ReviewAgent.run(pr='feat-issue-31', required_check=['tests:unit', 'security:oauth2', 'review:style']) From 91319cc83d5f5958ec473df3a13028407f50d1bf Mon Sep 17 00:00:00 2001 From: JJcyborg Date: Mon, 8 Jun 2026 23:26:01 +0000 Subject: [PATCH 2/2] chore: remove stray pr_stub.txt --- pr_stub.txt | 7 ------- 1 file changed, 7 deletions(-) delete mode 100644 pr_stub.txt diff --git a/pr_stub.txt b/pr_stub.txt deleted file mode 100644 index 0edac21..0000000 --- a/pr_stub.txt +++ /dev/null @@ -1,7 +0,0 @@ -Creating Draft PR... -Title: feat(issue-31): Implement OAuth2 validation flow for local observe data source -Description: Addresses Issue #31 by introducing robust token validation, replacing previous public scraping fallbacks. -Base Branch: main\nTarget: LocalObserve REPO - -# 5. CODE REVIEW STUB CALL -ReviewAgent.run(pr='feat-issue-31', required_check=['tests:unit', 'security:oauth2', 'review:style'])