ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-03-21 18:58:04 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,924 Commits 384 Branches 179 Tags
master
Commit Graph

7924 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Pepe Fagoaga
6962622fd2 fix(aws): filter VPC endpoint services by audited account to prevent AccessDenied errors (#10152) 
Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com>
Co-authored-by: jfagoagas <16007882+jfagoagas@users.noreply.github.com>
 2026-02-24 18:30:31 +01:00
Adrián Peña
2a4ee830cc feat(sdk): add --export-ocsf flag for OCSF ingestion to Prowler Cloud (#10095) 2026-02-24 17:47:35 +01:00
Josema Camacho
247bde1ef4 feat(attack-paths): add custom query and cartography schema endpoints (#10149) 2026-02-24 15:49:50 +01:00
Andoni Alonso
c159181d27 feat(api): add Image provider support for container image scanning (#10128) 2026-02-24 13:06:34 +01:00
Daniel Barranquero
030d053c84 chore(openstack): support multi-region in the same provider (#10135) 2026-02-24 12:50:52 +01:00
Prowler Bot
61076c755f feat(oraclecloud): Update commercial regions (#10134) 
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
 2026-02-24 11:37:25 +01:00
Andoni Alonso
75d01efc0d feat(m365): add entra_conditional_access_policy_emergency_access_exclusion security check (#9903) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-24 11:35:31 +01:00
Josema Camacho
e688e60fde feat(attack-paths): configure Neo4j for read-only queries (#10140) 2026-02-24 10:15:22 +01:00
Pepe Fagoaga
51dbf17faa fix(workflow): prevent GitHub auto-linking in triage tables (#10143) 2026-02-24 08:39:55 +01:00
Hugo Pereira Brito
f7895e206b fix(azure): standardize resource_id values across Azure checks (#9994) 2026-02-23 17:53:31 +01:00
Pepe Fagoaga
cd12a9451f feat(ci): add AI-powered issue triage agentic workflow (#10073) 2026-02-23 16:09:35 +01:00
Adrián Peña
584455a12a feat(api): add finding groups summaries (#9961) 
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
 2026-02-23 13:44:45 +01:00
Hugo Pereira Brito
5830cb63c9 fix(sdk): update Trend Micro URLs in AWS metadata files (#10068) 2026-02-23 13:15:06 +01:00
Josema Camacho
75c7f61513 feat(api): private labels and properties in Attack Paths graph - phase 1 (#10124) 2026-02-23 11:30:26 +01:00
Josema Camacho
b5d2a75151 feat(api): filter Attack Paths query results by provider_id (#10118) 2026-02-23 11:06:30 +01:00
Josema Camacho
c12f27413d fix(api): handle provider deletion race condition in attack paths scan (#10116) 2026-02-23 10:53:58 +01:00
Hugo Pereira Brito
bb5a4371bd feat(ui): add Cloudflare provider support (#9910) 
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com>
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
 2026-02-23 09:33:17 +01:00
Pedro Martín
9f6121bc05 fix(ocsf): serialization errors non-serializable resource meta (#10129) 2026-02-20 14:44:03 +01:00
Pedro Martín
9d4f68fa70 feat(compliance): add CIS 6.0 for the AWS provider (#10127) 2026-02-20 13:53:01 +01:00
Daniel Barranquero
b5e721aa44 fix: update ResourceType in Openstack and docs (#10126) 2026-02-20 12:05:08 +01:00
Daniel Barranquero
40f6a7133d feat(ui): add OpenStack provider support (#10046) 
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
 2026-02-20 09:44:34 +01:00
Andoni Alonso
ea60f2d082 feat(m365): add defenderxdr_critical_asset_management_pending_approvals security check (#10085) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
 2026-02-19 18:49:41 +01:00
Andoni Alonso
e8c0a37d50 feat(m365): add entra_seamless_sso_disabled security check (#10086) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
 2026-02-19 18:19:07 +01:00
Hugo Pereira Brito
48b94b2a9f feat(m365): add defenderxdr_endpoint_privileged_user_exposed_credentials security check (#10084) 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
 2026-02-19 17:52:16 +01:00
Hugo Pereira Brito
20b26bc7d0 feat(m365): add entra_app_registration_no_unused_privileged_permissions security check (#10080) 
Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-02-19 17:12:50 +01:00
Hugo Pereira Brito
23e51158e0 feat(m365): add defenderidentity_health_issues_no_open security check (#10087) 2026-02-19 16:58:08 +01:00
Andoni Alonso
d2f4f8c406 feat(image): add registry scan mode with OCI, Docker Hub, and ECR support (#9985) 2026-02-19 12:48:55 +01:00
Josema Camacho
a9c7351489 fix(api): upgrade cartography to 0.129.0 and neo4j driver to 6.x (#10110) 2026-02-18 16:28:24 +01:00
Alejandro Bailo
5f2e4eb2a6 fix(ui): replace HeroUI dropdowns with shadcn selects (#10097) 2026-02-18 13:46:57 +01:00
Alan Buscaglia
639333b540 feat(ui): setup vitest with react testing library and TDD workflow (#9925) 2026-02-18 11:25:50 +01:00
Pedro Martín
b732cf4f06 feat(docker): ulimits to worker services to prevent exhaustion (#10107) 2026-02-18 10:23:02 +01:00
Josema Camacho
be3be3eb62 fix(api): clean up temp Neo4j databases on scan failure and provider deletion (#10101) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-02-18 10:18:34 +01:00
Daniel Barranquero
338d514197 fix(api): gcp project id validation for legacy projects (#10078) 2026-02-18 10:11:07 +01:00
Pedro Martín
fec86754d8 fix(compliance): remove account_id and location for manual reqs (#10105) 2026-02-18 09:46:19 +01:00
Pedro Martín
313da7ebf5 feat(ui): add CSV and PDF download buttons to compliance views (#10093) 2026-02-18 09:36:54 +01:00
Josema Camacho
7698cdce2e feat(attack-paths): add graph_data_ready field to decouple query availability from scan state (#10089) 
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
 2026-02-17 17:29:36 +01:00
Pedro Martín
ff25d6a8c2 fix(ui): changes for update credetials for AliababaCloud provider (#10098) 2026-02-17 15:50:02 +01:00
Rubén De la Torre Vico
04b43b20ae chore(azure): enhance metadata for vm service (#9629) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-02-17 13:30:27 +01:00
Rubén De la Torre Vico
7d8de1d094 chore(azure): enhance metadata for entra service (#9619) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-02-17 12:53:27 +01:00
Sandiyo Christan
2c2881b351 fix(oss): use defusedxml to prevent XXE vulnerabilities (#9999) 
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-02-17 12:21:30 +01:00
Rubén De la Torre Vico
f8d0be311c chore(azure): enhance metadata for keyvault service (#9621) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-02-17 11:57:27 +01:00
Hugo Pereira Brito
8438a94203 chore: enhance github documentation and ui placeholder (#9830) 
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-02-17 10:48:53 +01:00
Pedro Martín
e8c48b7827 feat(reporting): support CSA CCM PDF reports (#10088) 2026-02-17 09:48:45 +01:00
Prowler Bot
df8a7220ff feat(oraclecloud): Update commercial regions (#10082) 
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
 2026-02-16 14:23:28 +01:00
Daniel Barranquero
a106cdf4c9 fix: oci regions actions labels (#10083) 2026-02-16 14:23:17 +01:00
Daniel Barranquero
a86f0b95bc fix(oci): update regions script to handle raw credentials (#10081) 2026-02-16 14:03:27 +01:00
Josema Camacho
bb34f6cc3d refactor(api): remove graph_database and is_graph_database_deleted from AttackPathsScan (#10077) 2026-02-16 12:46:49 +01:00
Daniel Barranquero
be516f1dfc feat(openstack): Add 7 New Compute Security Checks (#9944) 2026-02-16 11:46:48 +01:00
Copilot
90e317d39f fix(kms): detect public access for any KMS action, not just kms:* (#10071) 
Co-authored-by: copilot-swe-agent[bot] <198982749+Copilot@users.noreply.github.com>
Co-authored-by: jfagoagas <16007882+jfagoagas@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-02-16 10:12:29 +01:00
Pedro Martín
21bdbacdfb chore(readme): update and add skill (#10067) 
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
 2026-02-16 09:31:21 +01:00