pedrooot
|
44150687e1
|
chore(changelog): update with latest changes
|
2026-04-16 17:35:22 +02:00 |
|
pedrooot
|
9843d850e1
|
fix(ui): disable Next.js 16 Server Function arg logging to stop leaking sign-in credentials
|
2026-04-16 17:32:38 +02:00 |
|
Alejandro Bailo
|
489c6c1073
|
fix: CHANGELOG minor issue (#10758)
|
2026-04-16 17:07:22 +02:00 |
|
Adrián Peña
|
b08b072288
|
fix(api): exclude muted findings from pass_count, fail_count and manual_count (#10753)
|
2026-04-16 15:56:08 +02:00 |
|
Josema Camacho
|
ca29e354b6
|
chore(deps): bump msgraph-sdk to 1.55.0 and azure-mgmt-resource to 24.0.0, remove marshmallow (#10733)
|
2026-04-16 15:34:28 +02:00 |
|
Alejandro Bailo
|
85a3927950
|
fix(ui): upgrade React 19.2.5 and Next.js 16.2.3 to mitigate CVE-2026-23869 (#10752)
|
2026-04-16 15:24:10 +02:00 |
|
Rubén De la Torre Vico
|
04fe3f65e0
|
chore(deps): enable Dependabot pre-commit ecosystem and bump hooks (#10732)
|
2026-04-16 13:38:11 +02:00 |
|
Andoni Alonso
|
297c9d0734
|
fix(sdk): move #10726 changelog entry to unreleased version (#10728)
|
2026-04-16 13:10:00 +02:00 |
|
Erich Blume
|
a2a1a73749
|
fix(image): --registry-list crashes with AttributeError on global_provider (#10691)
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
|
2026-04-16 13:02:25 +02:00 |
|
lydiavilchez
|
08fbe17e29
|
fix(googleworkspace): treat secure Google defaults as PASS for Drive checks (#10727)
|
2026-04-16 13:01:55 +02:00 |
|
lydiavilchez
|
d920f78059
|
fix(googleworkspace): treat secure Google defaults as PASS for Calendar checks (#10726)
|
2026-04-16 12:51:40 +02:00 |
|
Pepe Fagoaga
|
12bf3d5e70
|
fix(db): add missing tenant_id filter in queries (#10722)
|
2026-04-16 11:55:38 +02:00 |
|
Adrián Peña
|
4002c28b5d
|
fix(api): add fallback handling for missing resources in findings (#10708)
|
2026-04-16 11:45:06 +02:00 |
|
Andoni Alonso
|
2439f54280
|
fix(sdk): allow account-scoped tokens in Cloudflare connection test (#10723)
|
2026-04-16 11:38:15 +02:00 |
|
Prowler Bot
|
b0e59156e6
|
chore(ui): Bump version to v5.25.0 (#10711)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-04-15 20:14:46 +02:00 |
|
Prowler Bot
|
f013bd4a53
|
docs: Update version to v5.24.0 (#10714)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-04-15 20:14:17 +02:00 |
|
Prowler Bot
|
6ad15f900f
|
chore(release): Bump version to v5.25.0 (#10710)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-04-15 20:14:06 +02:00 |
|
Prowler Bot
|
1784bf38ab
|
chore(api): Bump version to v1.26.0 (#10715)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-04-15 20:13:33 +02:00 |
|
Pepe Fagoaga
|
ba5b23245f
|
chore: review changelog for v5.24 (#10707)
|
2026-04-15 18:05:55 +02:00 |
|
Daniel Barranquero
|
43913b1592
|
feat(aws): support excluding regions from scans via CLI, env var, and config (#10688)
|
2026-04-15 17:59:46 +02:00 |
|
Alan Buscaglia
|
9e31160887
|
fix(ui): improve attack paths scan table UX and fix info banner variant (#10704)
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
|
2026-04-15 17:33:29 +02:00 |
|
Pepe Fagoaga
|
9a0c73256e
|
chore: delete .opencode (#10702)
|
2026-04-15 15:10:40 +02:00 |
|
Alejandro Bailo
|
2a160a10df
|
refactor(ui): remove legacy side drawers and clean code (#10692)
|
2026-04-15 13:55:57 +02:00 |
|
Alan Buscaglia
|
8d8bee165b
|
feat(ui): improve attack paths scan selection UX (#10685)
|
2026-04-15 13:54:25 +02:00 |
|
Alan Buscaglia
|
606efec9f8
|
fix(ui): keep update credentials wizard open (#10675)
|
2026-04-15 13:50:20 +02:00 |
|
Alan Buscaglia
|
d5354e8b1d
|
feat(ui): add syntax highlighting to finding groups remediation code (#10698)
|
2026-04-15 12:58:35 +02:00 |
|
Rubén De la Torre Vico
|
a96e5890dc
|
docs: replace Excalidraw diagrams with Mermaid and fix architecture connections (#10697)
|
2026-04-15 12:51:29 +02:00 |
|
Pepe Fagoaga
|
bb81c5dd2d
|
docs: add contextual menu for copy and issue/feat (#10699)
|
2026-04-15 12:50:29 +02:00 |
|
Daniel Barranquero
|
c3acb818d9
|
fix(vercel): handle team-scoped firewall config responses (#10695)
|
2026-04-15 11:59:20 +02:00 |
|
Andoni Alonso
|
e6fc59267b
|
docs: add Finding Groups documentation page (#10696)
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-04-15 11:58:39 +02:00 |
|
Josema Camacho
|
62f114f5d0
|
refactor(api): remove dead cleanup_findings no-op from attack-paths module (#10684)
|
2026-04-15 09:16:38 +02:00 |
|
Pepe Fagoaga
|
392ffd5a60
|
fix(beat): make it dependant from API service (#10603)
Co-authored-by: Josema Camacho <josema@prowler.com>
|
2026-04-14 18:35:26 +02:00 |
|
Alejandro Bailo
|
507b0882d5
|
fix(ui): fix findings group resource filters and mute modal migration (#10662)
|
2026-04-14 18:01:45 +02:00 |
|
Alejandro Bailo
|
89d72cf8fd
|
feat(ui): new resources side drawer with redesigned detail panel (#10673)
|
2026-04-14 17:20:19 +02:00 |
|
Rubén De la Torre Vico
|
f3a042933f
|
chore(deps): replace pre-commit and husky with prek (#10601)
|
2026-04-14 16:34:54 +02:00 |
|
stepsecurity-app[bot]
|
96e7d6cb3a
|
feat(security): security best practices from StepSecurity (#10682)
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-04-14 15:13:12 +02:00 |
|
Hugo Pereira Brito
|
a82eaa885d
|
refactor(m365): normalize CA platforms at model level (#10635)
Co-authored-by: Hugo P.Brito <hugopbrito@Mac.home>
|
2026-04-14 15:00:23 +02:00 |
|
Hugo Pereira Brito
|
90a619a8b4
|
feat(m365): add entra_conditional_access_policy_block_unknown_device_platforms security check (#10615)
Co-authored-by: Hugo P.Brito <hugopbrito@Mac.home>
|
2026-04-14 14:32:37 +02:00 |
|
Hugo Pereira Brito
|
638bf62d76
|
feat(entra): directory sync account exclusion (#10620)
Co-authored-by: Hugo P.Brito <hugopbrito@Mac.home>
|
2026-04-14 14:16:32 +02:00 |
|
Pablo Fernandez Guerra (PFE)
|
962615ca1f
|
chore(ui): bump serialize-javascript override from 7.0.3 to 7.0.5 (#10653)
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
|
2026-04-14 14:11:59 +02:00 |
|
Hugo Pereira Brito
|
5610f5ad90
|
feat(m365): add entra_conditional_access_policy_corporate_device_sign_in_frequency_enforced security check (#10618)
Co-authored-by: Hugo P.Brito <hugopbrito@Mac.home>
|
2026-04-14 14:10:00 +02:00 |
|
Pepe Fagoaga
|
be6fe1db04
|
chore(security): bump pytest to 9.0.3 (#10678)
|
2026-04-14 13:59:30 +02:00 |
|
Hugo Pereira Brito
|
92b838866a
|
feat(m365): add entra_conditional_access_policy_mfa_enforced_for_guest_users security check (#10616)
Co-authored-by: Hugo P.Brito <hugopbrito@Mac.home>
|
2026-04-14 13:45:12 +02:00 |
|
Josema Camacho
|
51591cb8cd
|
build: bump poetry to 2.3.4 and consolidate SDK workflows (#10681)
|
2026-04-14 13:32:46 +02:00 |
|
Hugo Pereira Brito
|
e24e1ab771
|
feat(m365): add exchange_organization_delicensing_resiliency_enabled security check (#10608)
|
2026-04-14 13:30:45 +02:00 |
|
Hugo Pereira Brito
|
bc3fd79457
|
feat(intune): add device compliance policy marks noncompliant check (#10599)
|
2026-04-14 13:01:47 +02:00 |
|
Hugo Pereira Brito
|
4941ed5797
|
feat(entra): add new check entra_conditional_access_policy_all_apps_all_users (#10619)
Co-authored-by: Hugo P.Brito <hugopbrito@Mac.home>
|
2026-04-14 12:47:57 +02:00 |
|
Daniel Barranquero
|
0f4d8ff891
|
feat(aws): add bedrock_vpc_endpoints_configured security check (#10591)
|
2026-04-14 12:22:22 +02:00 |
|
Daniel Barranquero
|
d1ab8b8ae5
|
feat(aws): add iam_policy_no_wildcard_marketplace_subscribe and iam_inline_policy_no_wildcard_marketplace_subscribe checks (#10525)
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
|
2026-04-14 12:08:40 +02:00 |
|
Daniel Barranquero
|
65e9593b41
|
feat(aws): add bedrock_access_not_stale security check (#10536)
|
2026-04-14 11:20:40 +02:00 |
|