ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-04-14 08:28:16 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,008 Commits 430 Branches 181 Tags
32b017c40bd07ecccf0859e7e64528ff399d0482
Commit Graph

8008 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
dependabot[bot]
32b017c40b chore(deps): bump docker/build-push-action from 6.19.2 to 7.0.0 
Bumps [docker/build-push-action](https://github.com/docker/build-push-action) from 6.19.2 to 7.0.0.
- [Release notes](https://github.com/docker/build-push-action/releases)
- [Commits](10e90e3645...d08e5c354a)

---
updated-dependencies:
- dependency-name: docker/build-push-action
  dependency-version: 7.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-02 02:47:46 +00:00
Alan Buscaglia
509ec74c3d fix(ui): findings groups improvements — security fixes, code quality, and UX feedback (#10513) 
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
 2026-04-01 15:54:46 +02:00
Adrián Peña
ab8e83da3f fix(api,ui): dynamically fetch Jira issue types instead of hardcoding "Task" (#10534) 
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
 2026-04-01 14:37:49 +02:00
Pablo Fernandez Guerra (PFE)
6ac90eb1b5 chore(ui): add pnpm supply chain security protections (#10471) 
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
Co-authored-by: César Arroba <cesar@prowler.com>
 2026-04-01 14:10:01 +02:00
Alejandro Bailo
af6198e6c2 feat(api): integrate Vercel provider into API layer (#10190) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-04-01 13:20:49 +02:00
Josema Camacho
dfe06a1077 fix(ui): allow selecting failed scans when graph data is available (#10531) 2026-04-01 11:08:34 +02:00
Alejandro Bailo
4f86667433 feat(sdk): add Vercel provider with 30 security checks (#10189) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-03-31 16:21:22 +02:00
Andoni Alonso
4bb1e5cff7 fix(sdk): redact sensitive CLI flags in HTML output (#10518) 2026-03-31 15:01:09 +02:00
Pedro Martín
99b80ebbd9 chore(actions): add pr-check-compliance-mapping action (#10526) 2026-03-31 13:38:20 +02:00
rchotacode
d18c5a8974 fix(oci): fix identity clients (#10520) 
Co-authored-by: Ronan Chota <ronan.chota@saic.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-31 09:42:19 +02:00
Hugo Pereira Brito
ab00c2dce1 feat(m365): add entra_conditional_access_policy_block_elevated_insider_risk security check (#10234) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-30 17:27:00 +02:00
Pablo Fernandez Guerra (PFE)
765f9c72f2 docs: add missing pre-commit hooks setup for TruffleHog, Safety and Hadolint (#10448) 
Co-authored-by: Pablo Fernandez <pfe@NB0240.local>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
 2026-03-30 16:43:32 +02:00
Erich Blume
de5bb94ff6 fix(image): pass registry arguments through init_global_provider (#10470) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-03-30 15:19:01 +02:00
lydiavilchez
c009a2128a feat(google-workspace): add CISA SCuBA Baselines compliance (#10466) 
Co-authored-by: Pedro Martín <pedromarting3@gmail.com>
 2026-03-30 14:33:38 +02:00
Alejandro Bailo
50556df713 feat(ui): add findings grouped view (#10425) 
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
 2026-03-30 14:17:36 +02:00
Hugo Pereira Brito
3b875484b0 feat(m365): add device registration MFA and harden Intune enrollment CA check (#10222) 
Co-authored-by: Hugo Brito <hugopbrito@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-30 13:36:05 +02:00
lydiavilchez
442b379777 feat(google-workspace): add CIS Foundations Benchmark v1.3.0 compliance (#10462) 
Co-authored-by: pedrooot <pedromarting3@gmail.com>
 2026-03-30 12:57:12 +02:00
Adrián Peña
2a8b6261e1 fix(api): false 404 and sorting on finding group resources endpoints (#10510) 2026-03-30 12:47:16 +02:00
Alan Buscaglia
6df74529d6 refactor(ui): remove "Clear all" button from filter pills strip (#10481) 2026-03-30 12:26:01 +02:00
César Arroba
6f6d62f51f fix(ci): remove DOCKER_HUB_REPOSITORY secret and add toniblyx mirror push (#10512) 2026-03-30 11:53:04 +02:00
Hugo Pereira Brito
7148086410 feat(m365): add entra_conditional_access_policy_block_o365_elevated_insider_risk security check (#10232) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-30 11:49:29 +02:00
Alan Buscaglia
4ef0b1bf2c fix(ui): fix pre-commit hook skipping lint, tests, and build (#10494) 2026-03-30 10:44:59 +02:00
César Arroba
de492a770c fix(ci): remove DOCKER_HUB_REPOSITORY secret from sdk container workflow (#10509) 2026-03-30 10:20:38 +02:00
César Arroba
e9009f783b fix(ci): remove setup-buildx-action from create-manifest jobs (#10508) 2026-03-30 10:01:32 +02:00
Raajhesh Kannaa Chidambaram
db1edf5ca7 feat(aws): add internet-exposed category to 13 checks (#10502) 
Co-authored-by: Raajhesh Kannaa Chidambaram <495042+raajheshkannaa@users.noreply.github.com>
 2026-03-30 08:59:29 +02:00
rchotacode
82d3ccec18 fix(oci): Add multi region filtering argument support (#10473) 
Co-authored-by: Ronan Chota <ronan.chota@saic.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-30 08:45:16 +02:00
rchotacode
ff46281f64 fix(oci): Fix service region support (#10472) 
Co-authored-by: Ronan Chota <ronan.chota@saic.com>
 2026-03-30 08:19:32 +02:00
Josema Camacho
94e234cefb fix(api): use raw FK ids in membership post_delete signal to avoid cascade lookup failures (#10497) 2026-03-27 16:16:28 +01:00
Pepe Fagoaga
8267fc4813 fix(step_security): keep notify in audit mode (#10496) 2026-03-27 16:01:24 +01:00
Josema Camacho
8bfeee238b feat(api): replace _provider_id property with label-based isolation and regex injection for custom queries (#10402) 2026-03-27 14:31:56 +01:00
Josema Camacho
cc197ea901 feat(api): add periodic cleanup of stale Attack Paths scans with dead-worker detection (#10387) 2026-03-27 14:17:22 +01:00
Pepe Fagoaga
2b5d015e09 feat(security): add missing endpoints to allowlist (#10495) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-27 13:53:52 +01:00
Adrián Peña
73e0ac6892 chore: update dependencies (#10492) 2026-03-27 13:13:47 +01:00
Adrián Peña
700b51ddad chore: update Python version references from 3.9 to 3.10 (#10493) 2026-03-27 13:13:36 +01:00
Pepe Fagoaga
417be55604 feat(security): block mode for hardened runners (#10482) 2026-03-27 13:08:59 +01:00
Hugo Pereira Brito
f75ce7b4dd feat(ui): add OpenCypher query editor (#10445) 2026-03-27 10:58:48 +00:00
Hugo Pereira Brito
269d9dfe41 feat(cli): add --resource-group flag to filter checks by resource group (#10479) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-27 11:55:28 +01:00
Apoorv Darshan
7b0ce7842b fix: remove return statements from finally blocks (#10102) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-27 09:23:15 +01:00
Terry Franklin
0a11ca4a68 feat(celery): VALKEY_SCHEME environment variable (#10420) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-27 09:22:35 +01:00
Adrián Peña
c953fa7e67 fix(api): resolve check_title filter to check_id for consistent finding-group counts (#10486) 2026-03-27 09:05:02 +01:00
Pepe Fagoaga
73907db856 fix(trivy-scan): don't comment if PR from fork (#10490) 2026-03-27 08:37:19 +01:00
Raajhesh Kannaa Chidambaram
041f95b3df feat(ec2): add check for SG ingress from public IPs to any port (#10335) 
Co-authored-by: Raajhesh Kannaa Chidambaram <495042+raajheshkannaa@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-26 17:21:16 +01:00
stepsecurity-app[bot]
716c130140 feat(security): security best practices from StepSecurity (#10480) 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-26 13:58:19 +01:00
Hugo Pereira Brito
c651f60e3a feat(m365): add entra_conditional_access_policy_mdm_compliant_device_required check (#10220) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-26 11:36:30 +01:00
Adrián Peña
dd00d71a07 fix(api): fix finding groups muted filter, counters and reaggregation (#10477) 2026-03-26 10:35:21 +01:00
Sandiyo Christan
834d1bca49 feat(awslambda): enrich Function model with inventory fields and add 3 security checks (#10381) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-26 10:33:39 +01:00
Davidm4r
2cf45c72b6 fix(api): remove MANAGE_ACCOUNT permission requirement for listing or create a tenant (#10468) 2026-03-26 09:41:16 +01:00
Pepe Fagoaga
213e18724d fix: Prowler's changelog (#10475) 2026-03-25 16:07:45 +01:00
Pepe Fagoaga
571141f57c fix(aws): set partition's region for global services (#10458) 2026-03-25 15:47:51 +01:00
Adrián Peña
45f0909c3e chore(api): pin all unpinned dependencies to exact versions (#10469) 2026-03-25 13:27:04 +01:00