keeping crowdsec up to date docker (swarm)

Is there a recommended way to keep CrowdSec collections, scenarios, and AppSec rules up-to-date automatically, instead of having to manually run

cscli hub update and cscli hub upgrade

cscli hub update and cscli hub upgrade

?

Are there any built-in or best-practice methods for automating rule updates within CrowdSec deployments?

Recreating the container updates those rules if I am not mistaken.
Does this also happen with persisted container data?

      # crowdsec container data
      - /etc/crowdsec/acquis.yaml:/etc/crowdsec/acquis.yaml
      - crowdsec-db:/var/lib/crowdsec/data
      - crowdsec-config:/etc/crowdsec

      # crowdsec container data
      - /etc/crowdsec/acquis.yaml:/etc/crowdsec/acquis.yaml
      - crowdsec-db:/var/lib/crowdsec/data
      - crowdsec-config:/etc/crowdsec

CrowdSec•12/5/25, 5:46 PM

Important Information

This post has been marked as resolved. If this is a mistake please press the red button below or type

/unresolve

/unresolve

•

12/7/25, 12:45 PM

blotus•12/6/25, 12:10 AM

At the moment, we don't have a recommended way to do that.

We have a draft PR doc to show how to setup a cron for this (https://github.com/crowdsecurity/crowdsec-docs/pull/904/files), but it's still very WIP (and to be honest, I'm not a huge fan of the cron approach for the containers, as it doesn't cover all usecases).

If and are inside a volume (which seems to be your case), restarting the container should perform an update, but only once 24h (this is a voluntary limit, as we had issues with some users having an invalid config and a container restarting a loop, which then triggered the rate limiting on the hub, banning them)

GitHub

enhance: add automatic hub updates section to Docker by LaurenceJJo...

Add comprehensive cron job setup for Docker run and Docker Compose deployments
Include scripts that handle hub updates and container restarts
Use modern Docker Compose V2 syntax (docker compose ins...

YannickOP•12/7/25, 12:45 PM

@blotus again, thank you so much for your answer!

It would be great, if that piece of information (how to update crowdsec/ keep crowdsec up to date and secure), could be added to the documentation or faq or at the end of the quickstart.

CCrowdSec Empty message

CrowdSecAPP•12/7/25, 12:45 PM

Resolving keeping crowdsec up to date docker (swarm)

CrowdSec•12/7/25, 12:45 PM

This has now been resolved. If you think this is a mistake please run

/unresolve

/unresolve