Alan Buscaglia
173659ae0b
fix(ci): prevent grep exit code 1 from failing empty dir check
...
- Add || true to grep -v that filters empty lines from VALID_PATHS
- GitHub Actions bash uses set -eo pipefail, so grep returning 1 (no
matches) killed the script before reaching the graceful exit 0
2026-03-12 11:33:33 +01:00
Alan Buscaglia
37abe6b47e
test(ci): add path resolution tests and architecture documentation
...
- Add test script for E2E path resolution logic (18 edge case scenarios)
- Add developer guide for test impact analysis system
2026-03-12 10:13:00 +01:00
Alan Buscaglia
7b2ad97317
fix(ci): gracefully skip E2E when test directories are empty
...
- Filter out resolved test paths that contain no spec/test files
- Exit gracefully instead of failing with Playwright "No tests found"
- Supports forward-looking e2e patterns for modules without tests yet
2026-03-12 09:58:41 +01:00
Alan Buscaglia
125ba830f7
fix(ci): prevent E2E auth setups from running on broad path matches ( #10304 )
2026-03-11 15:38:18 +01:00
Utwo
e40beee315
feat: Helm CD ( #10079 )
...
Co-authored-by: Pepe Fagoaga <pepe@prowler.com >
2026-03-11 10:07:22 +01:00
Pepe Fagoaga
9c2cb5efa8
fix(elbv2): Handle post-quantum (PQ) TLS policies ( #10219 )
2026-03-03 10:18:00 +01:00
Andoni Alonso
8adb4f43ad
chore: bump Trivy to 0.69.2 ( #10210 )
2026-03-02 09:54:34 +01:00
Pepe Fagoaga
8af9b333c9
ci: restore persist credentials when no output is generated ( #10211 )
2026-03-02 09:14:02 +01:00
Pepe Fagoaga
4e71a9dcf1
ci(security): Add zizmor ( #10208 )
2026-03-02 08:25:13 +01:00
Pepe Fagoaga
7adcbed727
fix(ci): zizmor security improvements ( #10207 )
2026-03-02 08:24:51 +01:00
Andoni Alonso
8be218b29f
fix(ci): harden GitHub Actions workflows against expression injection ( #10200 )
2026-03-01 19:58:43 +01:00
Alan Buscaglia
09302f9d7d
fix(ci): include E2E test paths in impact analysis module matching ( #10176 )
2026-02-26 12:10:36 +01:00
lydiavilchez
9ee8072572
feat(googleworkspace): add Google Workspace provider with directory service and super admin check ( #10022 )
2026-02-25 12:17:13 +01:00
Pepe Fagoaga
51dbf17faa
fix(workflow): prevent GitHub auto-linking in triage tables ( #10143 )
2026-02-24 08:39:55 +01:00
Pepe Fagoaga
cd12a9451f
feat(ci): add AI-powered issue triage agentic workflow ( #10073 )
2026-02-23 16:09:35 +01:00
Josema Camacho
a9c7351489
fix(api): upgrade cartography to 0.129.0 and neo4j driver to 6.x ( #10110 )
2026-02-18 16:28:24 +01:00
Alan Buscaglia
639333b540
feat(ui): setup vitest with react testing library and TDD workflow ( #9925 )
2026-02-18 11:25:50 +01:00
Daniel Barranquero
a106cdf4c9
fix: oci regions actions labels ( #10083 )
2026-02-16 14:23:17 +01:00
Josema Camacho
bb34f6cc3d
refactor(api): remove graph_database and is_graph_database_deleted from AttackPathsScan ( #10077 )
2026-02-16 12:46:49 +01:00
Daniel Barranquero
e6bea9f25a
feat(oraclecloud): add automated OCI regions updater script and CI workflow ( #10020 )
...
Co-authored-by: Pepe Fagoaga <pepe@prowler.com >
2026-02-12 14:35:43 +01:00
Hugo Pereira Brito
52f98f1704
chore(ci): update org members list in PR labeler ( #10053 )
2026-02-12 13:04:35 +01:00
Andoni Alonso
3afa98084f
chore(ci): update Josema user for labeling purposes ( #10041 )
2026-02-12 11:46:14 +01:00
Pedro Martín
fb966213cc
test(e2e): add e2e tests for alibabacloud provider ( #9729 )
2026-02-09 10:25:26 +01:00
Alan Buscaglia
619d1ffc62
chore(ci): remove legacy E2E workflow superseded by optimized v2 ( #9977 )
2026-02-06 11:20:10 +01:00
Alan Buscaglia
9e20cb2e5a
fix(ui): optimize scans page polling to avoid redundant API calls ( #9974 )
...
Co-authored-by: pedrooot <pedromarting3@gmail.com >
2026-02-06 10:49:15 +01:00
Hugo Pereira Brito
547c53e07c
ci: add duplicate test name checker across providers ( #9949 )
2026-02-03 12:00:41 +01:00
Alan Buscaglia
afb666e0da
feat(ci): add test impact analysis for selective test execution ( #9844 )
2026-01-29 17:51:25 +01:00
Daniel Barranquero
08730b4eb5
feat(openstack): add Openstack provider ( #9811 )
2026-01-29 12:54:18 +01:00
Alan Buscaglia
607cfd61ef
perf(ui): optimize CI cache for pnpm and Next.js builds ( #9843 )
2026-01-21 13:18:31 +01:00
Josema Camacho
d1a7eed5fa
chore(security): update filelock dep to solve vulnerability 82754 ( #9816 )
2026-01-20 13:26:59 +01:00
Pepe Fagoaga
e849959fd5
chore(changelog): run check for root dependency files ( #9823 )
2026-01-19 15:02:46 +01:00
Josema Camacho
032499c29a
feat(attack-paths): The complete Attack Paths feature ( #9805 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: César Arroba <19954079+cesararroba@users.noreply.github.com >
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com >
Co-authored-by: Claude <noreply@anthropic.com >
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com >
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com >
Co-authored-by: HugoPBrito <hugopbrit@gmail.com >
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com >
Co-authored-by: Pepe Fagoaga <pepe@prowler.com >
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Co-authored-by: Chandrapal Badshah <Chan9390@users.noreply.github.com >
Co-authored-by: Chandrapal Badshah <12944530+Chan9390@users.noreply.github.com >
Co-authored-by: Adrián Peña <adrianjpr@gmail.com >
Co-authored-by: Pedro Martín <pedromarting3@gmail.com >
Co-authored-by: KonstGolfi <73020281+KonstGolfi@users.noreply.github.com >
Co-authored-by: lydiavilchez <114735608+lydiavilchez@users.noreply.github.com >
Co-authored-by: Prowler Bot <bot@prowler.com >
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com >
Co-authored-by: StylusFrost <43682773+StylusFrost@users.noreply.github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com >
Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com >
Co-authored-by: Víctor Fernández Poyatos <victor@prowler.com >
Co-authored-by: bota4go <108249054+bota4go@users.noreply.github.com >
Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com >
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com >
Co-authored-by: mchennai <50082780+mchennai@users.noreply.github.com >
Co-authored-by: Ryan Nolette <sonofagl1tch@users.noreply.github.com >
Co-authored-by: Ulissis Correa <123517149+ulissisc@users.noreply.github.com >
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com >
Co-authored-by: Lee Trout <ltrout@watchpointlabs.com >
Co-authored-by: Sergio Garcia <sergargar1@gmail.com >
Co-authored-by: Alan-TheGentleman <alan@thegentleman.dev >
2026-01-16 13:37:09 +01:00
Alejandro Bailo
484a1d1fef
chore: upgrade Node.js to 24.13.0 LTS ( #9797 )
2026-01-15 12:46:42 +01:00
Hugo Pereira Brito
d4bc6d7531
feat(cloudflare): Add TLS/SSL, records and email security checks for zones ( #9424 )
...
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com >
2026-01-15 09:31:27 +01:00
Rubén De la Torre Vico
864b2099c3
chore(aws): enhance metadata for cognito service ( #8853 )
...
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com >
2026-01-13 14:01:37 +01:00
Alan Buscaglia
c8fab497fd
feat(skills): sync AGENTS.md to AI-specific formats ( #9751 )
...
Co-authored-by: Alan-TheGentleman <alan@thegentleman.dev >
Co-authored-by: pedrooot <pedromarting3@gmail.com >
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com >
2026-01-13 11:44:44 +01:00
Pepe Fagoaga
9ee77c2b97
chore(security): Remove safety check ignores as they are fixed ( #9752 )
2026-01-12 12:02:22 +01:00
Adrián Peña
d3eb30c066
chore: update API PR template ( #9749 )
2026-01-09 15:13:48 +01:00
Alan Buscaglia
7f2fa275c6
feat: add AI skills pack for Claude Code and OpenCode ( #9728 )
...
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com >
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com >
Co-authored-by: Pepe Fagoaga <pepe@prowler.com >
2026-01-09 15:01:18 +01:00
Pepe Fagoaga
42ae5b6e3e
chore(template): PR Community Checklist ( #9748 )
2026-01-09 14:42:07 +01:00
dependabot[bot]
73375ee289
build(deps): bump tj-actions/changed-files from 47.0.0 to 47.0.1 ( #9711 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com >
2026-01-08 13:30:41 +01:00
dependabot[bot]
7c9dd8fe89
build(deps): bump peter-evans/create-pull-request from 7.0.8 to 8.0.0 ( #9705 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 13:19:35 +01:00
dependabot[bot]
f407a24022
build(deps): bump actions/upload-artifact from 4.6.2 to 6.0.0 ( #9712 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 13:16:15 +01:00
dependabot[bot]
8f5c43744f
build(deps): bump softprops/action-gh-release from 2.4.1 to 2.5.0 ( #9389 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 13:15:24 +01:00
dependabot[bot]
858446c740
build(deps): bump actions/setup-node from 6.0.0 to 6.1.0 ( #9707 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 13:00:44 +01:00
dependabot[bot]
e9ca8bfda6
build(deps): bump trufflesecurity/trufflehog from 3.91.1 to 3.92.4 ( #9710 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com >
2026-01-08 12:56:15 +01:00
dependabot[bot]
5cd446c446
build(deps): bump codecov/codecov-action from 5.5.1 to 5.5.2 ( #9708 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 12:56:04 +01:00
dependabot[bot]
319f5b6c38
build(deps): bump actions/cache from 4.3.0 to 5.0.1 ( #9706 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 12:54:40 +01:00
dependabot[bot]
64c9dd4947
build(deps): bump docker/login-action from 3.4.0 to 3.6.0 ( #9396 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 12:54:03 +01:00
dependabot[bot]
8b2dea52fa
build(deps): bump docker/setup-buildx-action from 3.11.1 to 3.12.0 ( #9709 )
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2026-01-08 12:52:42 +01:00