feat(shield): add file_integrity_monitoring

therealbobo · therealbobo · commit ea928a2fbcc0 · 2025-11-27T12:03:42.000Z
Signed-off-by: Roberto Scolaro &lt;roberto.scolaro21@gmail.com&gt;
diff --git a/charts/shield/Chart.yaml b/charts/shield/Chart.yaml
@@ -13,5 +13,5 @@ maintainers:
   - name: mavimo
     email: marcovito.moscaritolo@sysdig.com
 type: application
-version: 1.23.4
+version: 1.24.4
 appVersion: "1.0.0"
diff --git a/charts/shield/templates/host/_configmap_helpers.tpl b/charts/shield/templates/host/_configmap_helpers.tpl
@@ -106,6 +106,8 @@ true
     (dict "enabled" .investigations.audit_tap.enabled)
   "drift_control"
     (dict "enabled" .detections.drift_control.enabled)
+  "file_integrity_monitoring"
+    (dict "enabled" .detections.file_integrity_monitoring.enabled)
   "jmx"
     (dict "enabled" (dig (include "host.monitor_key" .) "java_management_extensions" "enabled" false .))
   "live_logs"
diff --git a/charts/shield/tests/host/configmap-dragent-yaml_test.yaml b/charts/shield/tests/host/configmap-dragent-yaml_test.yaml
@@ -645,6 +645,11 @@ tests:
           pattern: |
             drift_control:
               enabled: false
+      - matchRegex:
+          path: data['dragent.yaml']
+          pattern: |
+            file_integrity_monitoring:
+              enabled: false
       - matchRegex:
           path: data['dragent.yaml']
           pattern: |
@@ -780,6 +785,19 @@ tests:
             malware_control:
               enabled: true
 
+  - it: Enable File Integrity Monitoring
+    set:
+      features:
+        detections:
+          file_integrity_monitoring:
+            enabled: true
+    asserts:
+      - matchRegex:
+          path: data['dragent.yaml']
+          pattern: |
+            file_integrity_monitoring:
+              enabled: true
+
   - it: Enable Network Security
     set:
       features:
diff --git a/charts/shield/values.schema.json b/charts/shield/values.schema.json
@@ -883,6 +883,9 @@
         },
         "kubernetes_audit": {
           "$ref": "#/$defs/FeatureGroupDetections/$defs/KubernetesAudit"
+        },
+        "file_integrity_monitoring": {
+          "$ref": "#/$defs/FeatureGroupDetections/$defs/FileIntegrityMonitoring"
         }
       },
       "$defs": {
@@ -972,6 +975,16 @@
               ]
             }
           }
+        },
+        "FileIntegrityMonitoring": {
+          "type": "object",
+          "additionalProperties": true,
+          "properties": {
+            "enabled": {
+              "type": "boolean",
+              "description": "Specify if the File Integrity Monitoring feature is enabled"
+            }
+          }
         }
       }
     },
diff --git a/charts/shield/values.yaml b/charts/shield/values.yaml
@@ -128,6 +128,8 @@ features:
           resources:
             - '*/*'
           scope: '*'
+    file_integrity_monitoring:
+      enabled: false
 
   investigations:
     activity_audit:

Original file line number	Diff line number	Diff line change
`@@ -883,6 +883,9 @@`
`883`	`883`	`},`
`884`	`884`	`"kubernetes_audit": {`
`885`	`885`	`"$ref": "#/$defs/FeatureGroupDetections/$defs/KubernetesAudit"`
	`886`	`+ },`
	`887`	`+ "file_integrity_monitoring": {`
	`888`	`+ "$ref": "#/$defs/FeatureGroupDetections/$defs/FileIntegrityMonitoring"`
`886`	`889`	`}`
`887`	`890`	`},`
`888`	`891`	`"$defs": {`
`@@ -972,6 +975,16 @@`
`972`	`975`	`]`
`973`	`976`	`}`
`974`	`977`	`}`
	`978`	`+ },`
	`979`	`+ "FileIntegrityMonitoring": {`
	`980`	`+ "type": "object",`
	`981`	`+ "additionalProperties": true,`
	`982`	`+ "properties": {`
	`983`	`+ "enabled": {`
	`984`	`+ "type": "boolean",`
	`985`	`+ "description": "Specify if the File Integrity Monitoring feature is enabled"`
	`986`	`+ }`
	`987`	`+ }`
`975`	`988`	`}`
`976`	`989`	`}`
`977`	`990`	`},`