Once you've installed a CWPP Agent on a Virtual Machine (VM), the agent automatically updates itself by periodically running a self-updating binary. Specifically, the CICD service finds agent updates. It checks every 3 hours for an available new version and updates the agent as needed.
As part of the update, the outdated version is uninstalled and the latest version of the agent is installed. Any plugins that were running before the upgrade are automatically enabled to continue running.
Agent upgrades failures are possible, though rare. If you notice an issue during or after an upgrade, check the following:
Permission issues in the native OS. Either executable permissions were unintentionally changed, or the binary is blocked by other security process like AppArmor or SE Linux
Communication issues with POP servers. Verify that the updater binary is able to communicate with the POP server. Communication issues could exist if the certificate expired or connection properties were unintentionally changed.
Backend connection issues. Connection issues with the backend could be hampered by incorrect security groups or rules, or in some case, deletion of Security Group resources.
If the upgrade issues continue, try uninstalling the agent and upgrading to the new version directly, or contact Skyhigh Security Support.