Cribl v4.17
What's New in Version 4.17?
Cribl 4.17 is about Search. For more complete release notes, check out the specific product release notes: Cribl Stream, Cribl Edge, Cribl Search, and Cribl Lake on our fantastic docs site. Below are a few highlights from the release.
Cribl Guard part Deux: Background Detection
Background Detection in Cribl Guard is an AI-driven capability that scans data flowing through Pipelines and analyzes it in the background to uncover previously unknown sensitive data patterns. Instead of relying solely on predefined rules, Background Detection uses a family of purpose-built transformer models to proactively surface new findings (such as PII, secrets, or regulated data) so customers can review, ignore, or immediately mitigate them with additional Guard rules before they reach downstream Destinations
Pack-to-Pack champions!
Stream will let data flow cleanly between Packs and globally defined objects instead of forcing everything to stay trapped inside a single Pack. Teams can send data from a Pack into global routes or point global sources and routes into specific Packs, enabling Pack‑to‑Pack, Pack‑to‑global, and global‑to‑Pack paths.
ChatGPT Pack
Buy it, use it, break it, fix it.
Windows installer improvements
The Windows installer and upgrade flow for Cribl Edge has been tightened to address common pain points in large Windows estates. Installs and upgrades remain consistent and resilient, even when changes are pushed across thousands of endpoints.
Scale and Hardening Improvements
Cribl Edge is getting a focused hardening pass that burns down customer‑found defects and smooths operational rough spots across large deployments. This release improves reliability under sustained load so Edge continues to behave predictably as fleets and data volumes grow.
New and Improved Search
New features are coming to Cribl Search!! This AI-powered solution brings data ingest, storage, and high-speed analysis together in a single, end-to-end system. With simplified ingestion and AI-driven parsing and extraction, teams can onboard data in just minutes. Data is stored in a high-speed, automatically schematized store, so it’s always ready for fast, easy analysis.
Lakehouse in more places
Cribl Lakehouse now supports additional AWS regions, including Tokyo (ap-northeast-1), São Paulo (sa-east-1), Ireland (eu-west-1), and Paris (eu-west-3). This expanded regional availability allows customers to deploy Lakehouse closer to their data, users, and cloud workloads. The result is a more performant, compliant, and resilient data foundation—wherever teams operate.
New and improved Search is here betches! Let's go check it out!