Sysdig contributes Falco's kernel module, eBPF probe, and libraries to the CNCF

Sysdig has announced the donation of its kernel module, eBPF probe, and libraries to the Cloud Native Computing Foundation (CNCF), integrating core components of Falco—a widely-used tool for runtime security and threat detection in cloud environments—into the CNCF's governance and licensing framework. This move signifies the culmination of efforts to transition these components from Sysdig's repository, further supporting Sysdig's commitment to open-source principles. By transferring ownership to the CNCF, Sysdig aims to ensure that Falco remains community-driven and fully open-source, enabling developers to build upon its powerful system call capture framework and event enrichment library. This transition is expected to enhance collaboration within the Cloud Native community, fostering the development of new tools for runtime security, incident response, and forensics.