Support Policy for Sysdig Agent

Sysdig is committed to providing reliable and efficient support for the Sysdig Agent. This section outlines the support policy for the Sysdig Agent, including our version support and end of support policies.

Version Support

Sysdig recommends that you utilize the latest version of the Sysdig Agent to ensure optimal performance and to have access to the latest features.

In the event that you continue to use an older version of the agent, Sysdig provides support for the n-3 versions prior to the current one based on the minor number.

For instance, if the latest release is v12.8.0, we will provide support for n-3 versions backward, up to and including v12.5.0.

Specifically:

  • For versions latest to n-3, Sysdig will provide deep troubleshooting and support for user-facing issues with the agent.

  • For versions older than n-3, Sysdig will provide expertise on known issues and best effort on new issues. The defects that need in-depth troubleshooting will require an upgrade to a supported version.

If an issue arises that is fixed in a newer version, you are expected to upgrade to the version with the fix. If a defect requires a code change, you must upgrade to the latest version to obtain the fix.

Sysdig does not provide hotfixes for versions older than the latest release.

Vulnerabilities

Sysdig takes security seriously and strives to ensure that our products and services are secure and protected from vulnerabilities. As part of our security measures, Sysdig has implemented a vulnerability management policy to address and fix vulnerabilities that are detected with Sysdig Agent in a timely manner.

Remediation Timeframe

Depending on the CVE severity level, each level has a designated time frame for resolving the vulnerability, which starts when a fix is available for the vulnerability in a released package*:

  • Critical: 7 days
  • High: 30 days
  • Medium: 60 days

End of Support

At Sysdig, we have a 1-year deprecation policy for backend connectivity. This means that all the agent releases will have a 1-year deprecation policy moving forward.

New prebuilt kernel probe binaries will only be generated for Sysdig Agent versions latest to n-3. Existing prebuilt kernel probes will remain available for older Sysdig Agent releases. If you require kernel probes for newer kernel versions, whilst using a version of agent n-3 or older, you are required to build the kernel probes on the fly by using the kernel headers or the Sysdig probe builder.