docs(changelog): note kubernetes exec auth hardening

This commit is contained in:
Hugo P.Brito
2026-07-01 12:27:09 +01:00
parent b4c9cb5142
commit d38b6e41c6
2 changed files with 8 additions and 0 deletions
+4
View File
@@ -10,6 +10,10 @@ All notable changes to the **Prowler API** are documented in this file.
- Attack Paths: Scan task now checks the ingest Neo4j database and configured graph sink before starting graph ingestion [(#11743)](https://github.com/prowler-cloud/prowler/pull/11743)
- Disable PowerShell telemetry in the API container image [(#11746)](https://github.com/prowler-cloud/prowler/pull/11746)
### 🔐 Security
- Kubernetes provider credentials now reject kubeconfigs using `exec` authentication in Prowler Cloud, preventing user-supplied commands from running on Cloud workers [(#11753)](https://github.com/prowler-cloud/prowler/pull/11753)
---
## [1.32.2] (Prowler UNRELEASED)
+4
View File
@@ -12,6 +12,10 @@ All notable changes to the **Prowler UI** are documented in this file.
- Filter the Overview, Findings, Resources, Scans, and Providers views by provider group [(#11659)](https://github.com/prowler-cloud/prowler/pull/11659)
- CIS Controls v8.1 compliance support, including its detail view and report mapping [(#11700)](https://github.com/prowler-cloud/prowler/pull/11700)
### 🔐 Security
- Kubernetes provider credential forms now reject kubeconfigs using `exec` authentication in Prowler Cloud before submission [(#11753)](https://github.com/prowler-cloud/prowler/pull/11753)
---
## [1.31.1] (Prowler v5.31.1)