Fleet v4.50 is here! 🚀fleet Here's some of what's included in this release (please be aware that some items discussed may be Fleet premium features): 💻 Deploy security agents to macOS, Windows, and Linux Now available in Fleet Premium, this feature allows admins to add and deploy security agents directly to macOS, Windows, and Linux hosts through the Software page, the Fleet API, or via GitOps workflows. This functionality requires that the host has a

fleetd

agent with scripts enabled, but it does not necessitate MDM features to be enabled within Fleet. This new feature simplifies host security for IT and security teams by allowing them to deploy necessary security tools across different operating systems without needing extra infrastructure changes 👏🏽 ‼️ Please note: For users who self-host Fleet, this feature requires connecting Fleet with an S3 bucket. See how in the server configuration reference here. 🤖 Policy description and resolutions now aided by AI Fleet now leverages AI to automatically populate policy details directly from SQL queries that define policies. It is important to note that Fleet does not use any data to train large language models (LLMs); only the policy queries (SQL) are sent to the LLM for generating descriptions and resolutions. When admins create or modify a policy, they can now opt to have the description and resolution fields filled instantly by the AI based on the context and content of the SQL query. macadminsorg Mac Admins SOFA support Fleet has integrated support for the Mac Admins SOFA, enhancing its capabilities to provide comprehensive tracking and surfacing of update information for macOS hosts. SOFA offers continuous updates on XProtect data, OS updates, and detailed release information. This integration within Fleet is facilitated through Graham Gilbert's recent updates to the Mac Admins osquery extension, which includes tables specifically for security release information (

sofa_security_release_info

) and unpatched CVEs (

sofa_unpatched_cves

). 📜

zsh

support Fleet has expanded its scripting capabilities by adding support for

zsh

(Z Shell) scripts, catering to IT admins and developers diverse scripting preferences. This update allows users to execute

zsh

scripts directly within Fleet, providing a flexible and powerful toolset for managing and automating tasks across various systems. 🪲 Additional bug fixes and product enhancements (full list in release notes) • Added support for escaping

$

(with

\

) in gitops yaml files. • Optimized the hourly host_software count query to reduce individual query runtime. • Updated built-in labels to support being applied via

fleetctl apply

. • Added the

POST /api/fleet/orbit/software_install/result

endpoint for fleetd to send results for a software installation attempt. • Added the

GET /api/v1/fleet/hosts/{id}/software

endpoint to list the installed software for the host. • Added a new command

fleetctl api

to easily use fleetctl to hit any REST endpoint via the CLI. • Added support to extract package name and version from software installers. • Added the uninstalled but available software installers to the response payload of the "List software titles" endpoint. • Updated software page to support new add software feature. • Updated fleetctl to print team id as part of the

fleetctl get teams

command. • Fixed ingestion of private IPv6 address from agent. • Fixed bug where hosts query results were not cleared after transferring the host to other teams. • Fixed a bug with users not being collected on Linux devices. 📚 Dive deeper into v4.50 • Changelog • Release Blog • Upgrade Guide Please share your thoughts or questions about this update in this channel or reach out directly. We're always here to support you. Thank you for being part of the Fleet community! fleet