Serverless Agent Release Notes
Deprecation Notice
Upcoming Changes to Sysdig Product Line
In upcoming releases, the following change will take effect:
- Retirement Plan for Serverless Orchestrator Agent
- The Orchestrator Agent entered its deprecation phase with Serverless Agent 5.3.0 and is set to be fully deprecated by the end of July 2025.
- After this date, it will no longer receive updates, including development, maintenance, bug fixes, or security patches.
For guidance on migrating from the Orchestrator, please refer to Migrating from Orchestrator. Our support team is available to answer any questions or assist you with your migration strategy. Further notifications and updates will be provided in upcoming releases.
Serverless Agent 5.4.0 April 10, 2025
Enhancements
General Availability for Google Cloud Run Support
The Serverless Workload Agent supports securing containers running in Google Cloud Run Service. For more information, see Cloud Run Service.
General Availability for Microsoft Azure Container Apps
The Serverless Workload Agent supports securing containers running in Microsoft Azure Container Apps. For more information, see Azure Container Apps.
Custom CA certificates for Workload Agent
The Serverless Workload Agent supports adding custom CA certificates for secure communication with the Sysdig backend. For more information, see Add Custom CA Certificates.
Multi-cloud serverless labels in policy events
The Serverless Workload Agent provides the following multi-cloud labels in policy events:
serverless.platformserverless.revisionserverless.clusterserverless.serviceserverless.task
Defect Fixes
Logging improvements
Logging has been optimized to exclude messages irrelevant to serverless environments, enhancing clarity and reducing noise.
Vulnerability Fixes
Addressed CVE-2025-22866 in the Workload Agent.
Serverless Agent 5.3.3 April 10, 2025
Vulnerability Fixes
Addressed the following CVEs:
Orchestrator Agent
- CVE-2025-24928
- CVE-2024-8176
- CVE-2024-56171
- CVE-2024-28835
- CVE-2024-28834
- CVE-2024-2236
- CVE-2024-0567
- CVE-2024-0553
- CVE-2023-5981
Serverless Patcher 5.3.3 March 17, 2025
Defect Fixes
Instrumentation failure with dynamically resolved image names
The serverless-patcher can perform task instrumentation when images are dynamically defined at deployment. You must still specify the image’s original entry point and command in the template’s container definitions as mentioned in ECS on Fargate
Serverless Agent 5.3.2 February 26, 2025
Defect Fixes
Orchestrator Agent Metadata Parsing on Startup
Fixed an issue where the Orchestrator Agent failed to properly parse the Network Configuration in the Task Definition, preventing it from starting correctly.
Vulnerability Fixes
Addressed the following CVEs:
Orchestrator Agent
Serverless Patcher
Serverless Agent 5.3.1 February 03, 2025
Enhancements
New CloudFormation Templates are available for direct connection with the Sysdig backend and Orchestrator connection for the Workload Agent.
Defect Fixes
Fixed an issue to improve the agent stability and connection with the collector to prevent unexpected restarts.
Vulnerability Fixes
Addressed the following CVEs:
Orchestrator Agent
Workload Agent
Serverless Patcher
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.
