{"version":"1.0","workflow_uuid":"a8b4a917-414b-11f1-9bc6-00163e2b0d79","workflow_title":"Tracee — eBPF Runtime Security and Forensics for Linux","install_contract":{"version":"1.0","installReady":false,"title":"Tracee — eBPF Runtime Security and Forensics for Linux","summary":"Tracee by Aqua Security uses eBPF to trace system events at the OS level, detecting suspicious behavior in containers and hosts for runtime security and forensics.","assetType":"Configs","pageUrl":"https://tokrepo.com/en/workflows/a8b4a917-414b-11f1-9bc6-00163e2b0d79","sourceUrl":"https://github.com/aquasecurity/tracee","intendedFor":[],"firstActions":[],"agentFirstSteps":[],"targetPaths":[],"verification":[],"startingPoints":[],"example":"","successOutcome":"","boundaries":[],"askUserIf":["the current workspace stack cannot be matched to a safe upstream template","the target path is not the project root, or an existing file should be merged instead of overwritten"]}}