Pedro Martín
|
ca48fd0719
|
feat(aws): add apigateway_domain_name_pqc_tls_enabled check (#11316)
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
|
2026-06-22 16:12:01 +01:00 |
|
s1ns3nz0
|
b9298b4023
|
feat(azure): add network_vnet_ddos_protection_enabled check (#11044)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-22 16:34:52 +02:00 |
|
Josema Camacho
|
2375f1d962
|
fix(api): uvicorn worker keepalive (#11663)
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
|
2026-06-22 16:30:33 +02:00 |
|
Alejandro Bailo
|
5ee8b9680d
|
feat(ui): add organization bulk scan scheduling (#11643)
|
2026-06-22 16:21:35 +02:00 |
|
Pedro Martín
|
45cfe4e411
|
feat(aws): add transfer_server_pqc_ssh_kex_enabled check (#11315)
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
|
2026-06-22 14:30:15 +01:00 |
|
abdou
|
30d737c7d7
|
fix(api): bound Celery worker concurrency to a configurable default (#11075)
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
|
2026-06-22 14:05:11 +02:00 |
|
s1ns3nz0
|
869f0726f5
|
feat(azure): add network_subnet_nsg_associated check (#11043)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-22 14:03:54 +02:00 |
|
s1ns3nz0
|
6dda1ae485
|
feat(azure): add aks_cluster_local_accounts_disabled check (#11030)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-22 13:38:17 +02:00 |
|
s1ns3nz0
|
13f51de5c1
|
feat(azure): add aks_cluster_azure_monitor_enabled check (#11029)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-22 13:17:23 +02:00 |
|
s1ns3nz0
|
5d5f0676e0
|
feat(gcp): add secretmanager_secret_not_publicly_accessible check (#11025)
Co-authored-by: Lydia Vilchez <lydiavilchezlopez@gmail.com>
|
2026-06-22 12:55:42 +02:00 |
|
varunmamillapalli
|
8a1d7bcd6b
|
feat(linode): add provider with administration compute and networking services (#11633)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
|
2026-06-22 11:19:20 +02:00 |
|
s1ns3nz0
|
ccc1f161d2
|
feat(gcp): add cloudfunction_function_not_publicly_accessible check (#11022)
Co-authored-by: Lydia Vilchez <lydiavilchezlopez@gmail.com>
|
2026-06-22 10:26:03 +02:00 |
|
Pepe Fagoaga
|
a7917f779a
|
chore(sdk): changelog for v5.30.3 (#11651)
|
2026-06-19 15:21:38 +02:00 |
|
Pepe Fagoaga
|
7f96d895bb
|
fix: API changelog from advisory merge (#11649)
|
2026-06-19 13:48:47 +02:00 |
|
Adrián Peña
|
bf3b5c2ba7
|
Merge commit from fork
* fix(saml): cross-tenant account takeover via SAML domain claiming
* chore(changelog): add PR #
* fix(api): bind SAML tokens to validated domain
- Reject SAML assertions with mismatched email domains
- Issue SAML tokens from the validated ACS tenant
- Add regression coverage for cross-tenant SAML token issuance
* fix(api): resolve SAML tenant inside RLS context
- Load the SAML tenant relation before leaving the RLS transaction
- Avoid lazy tenant lookups during the SAML ACS finish flow
---------
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-06-19 13:38:51 +02:00 |
|
Hugo Pereira Brito
|
218f64595a
|
fix(metadata): tag IAM policy privilege escalation check (#11648)
|
2026-06-19 13:09:35 +02:00 |
|
Josema Camacho
|
6d8d553610
|
fix(api): set gunicorn keep-alive above the load balancer idle timeout to stop 502s (#11647)
|
2026-06-19 12:49:49 +02:00 |
|
Pedro Martín
|
e10cf34ad6
|
feat(compliance): DORA compliance framework for Alibaba Cloud (#11646)
|
2026-06-19 12:17:33 +02:00 |
|
s1ns3nz0
|
bbf54011ea
|
feat(azure): add postgresql_flexible_server_high_availability_enabled check (#11046)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-19 11:59:37 +02:00 |
|
Pedro Martín
|
9e173978dc
|
feat(compliance): add DORA compliance framework for Cloudflare (#11645)
|
2026-06-19 10:37:07 +02:00 |
|
s1ns3nz0
|
d27ec7d62e
|
feat(azure): add postgresql_flexible_server_geo_redundant_backup_enabled check (#11045)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-19 10:21:38 +02:00 |
|
Pedro Martín
|
151dcd2895
|
feat(compliance): add DORA compliance framework for GCP (#11642)
|
2026-06-19 09:07:54 +02:00 |
|
s1ns3nz0
|
d961d7efe4
|
feat(azure): add mysql_flexible_server_high_availability_enabled check (#11042)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-19 09:00:46 +02:00 |
|
Josema Camacho
|
99285d4656
|
fix(api): close DB connections per request to stop ASGI replica connection leak (#11640)
|
2026-06-18 17:42:19 +02:00 |
|
Adrián Peña
|
19629e9bb8
|
fix: simplify local dev launch workflow (#11641)
|
2026-06-18 16:51:02 +02:00 |
|
Adrián Peña
|
b89b427a86
|
feat: add Makefile local development stack (#11637)
|
2026-06-18 16:37:42 +02:00 |
|
Alejandro Bailo
|
908d2ce766
|
feat(ui): per-provider scan schedule management gated by capability (#11521)
|
2026-06-18 15:47:03 +02:00 |
|
Pablo Fernandez Guerra (PFE)
|
853610bbbf
|
feat(ui): resolve public SaaS config at container runtime (#11500)
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
|
2026-06-18 15:12:18 +02:00 |
|
Pepe Fagoaga
|
751c7fc29f
|
chore(jira): timeout to 90 seconds (#11638)
|
2026-06-18 13:03:19 +02:00 |
|
s1ns3nz0
|
7dd08bc6bf
|
feat(azure): add mysql_flexible_server_geo_redundant_backup_enabled check (#11041)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-18 12:41:04 +02:00 |
|
Alejandro Bailo
|
2111d083df
|
fix(ui): bump transitive dompurify to 3.4.10 to patch XSS advisories (#11636)
|
2026-06-18 12:00:58 +02:00 |
|
s1ns3nz0
|
82d37c4978
|
feat(azure): add aks_cluster_defender_enabled check (#11028)
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
|
2026-06-18 10:22:51 +01:00 |
|
Pedro Martín
|
aee3b392a7
|
fix(compliance): multi-section undercount & leaked provider tab (#11567)
|
2026-06-18 10:30:27 +02:00 |
|
s1ns3nz0
|
ddbf3405a0
|
feat(azure): add defender_ensure_defender_cspm_is_on check (#11037)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-18 10:05:02 +02:00 |
|
Pablo Fernandez Guerra (PFE)
|
2293cab72c
|
fix(ui): adaptive Attack Paths messages for waiting states (#11512)
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
|
2026-06-18 10:03:35 +02:00 |
|
César Arroba
|
5a761f341b
|
ci: remove redundant compliance CODEOWNERS rule (#11634)
|
2026-06-18 09:07:43 +02:00 |
|
s1ns3nz0
|
3c68a121e5
|
feat(azure): add databricks_workspace_no_public_ip_enabled check (#11036)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-18 09:06:25 +02:00 |
|
Pedro Martín
|
c0ae8b9739
|
feat(compliance): add DORA compliance framework for Azure (#11551)
|
2026-06-18 08:56:04 +02:00 |
|
s1ns3nz0
|
5ec4a1cbba
|
feat(gcp): add cloudfunction_function_inside_vpc check (#11021)
Co-authored-by: Lydia Vilchez <lydiavilchezlopez@gmail.com>
|
2026-06-17 17:35:32 +02:00 |
|
Josema Camacho
|
bae74b8181
|
fix(api): ignore RequestAborted from health-check probe disconnects in Sentry (#11632)
|
2026-06-17 16:20:17 +02:00 |
|
Pablo Fernandez Guerra (PFE)
|
5ecfd6ea20
|
test(ui): add Okta provider form E2E test (#11600)
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
Co-authored-by: Claude Opus 4.8 <noreply@anthropic.com>
Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com>
|
2026-06-17 16:17:35 +02:00 |
|
Zeus Almightee
|
e8ffe59ce2
|
feat(m365/entra): add entra_conditional_access_policy_no_deleted_object_references check (#11236)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-06-17 16:16:49 +02:00 |
|
StylusFrost
|
e2ce41a492
|
feat(sdk): add Provider.get_class dynamic provider resolver (#11398)
|
2026-06-17 15:55:21 +02:00 |
|
Alejandro Bailo
|
6546d51a6c
|
fix(ui): show alert permission errors (#11629)
|
2026-06-17 15:44:52 +02:00 |
|
s1ns3nz0
|
73059ffc7e
|
feat(azure): add databricks_workspace_public_network_access_disabled check (#11035)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Hugo P.Brito <hugopbrito@Hugos-MacBook-Pro.local>
|
2026-06-17 14:12:18 +02:00 |
|
Josema Camacho
|
f1a30f706a
|
fix(api): raise Gunicorn worker timeout to 120s via GUNICORN_TIMEOUT (#11631)
|
2026-06-17 14:04:36 +02:00 |
|
Pablo Fernandez Guerra (PFE)
|
aa60dc3e17
|
ci(ui): add missing Google Workspace env vars to E2E workflow (#11599)
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
|
2026-06-17 13:18:39 +02:00 |
|
César Arroba
|
54518bd127
|
fix(ui): raise node heap to fix arm64 docker build OOM (#11628)
|
2026-06-17 13:02:20 +02:00 |
|
PrettyFox0
|
8d4ec561c2
|
feat(m365): add check for directory sync object takeover protection (#11098)
Co-authored-by: shadyfox <git@twink.energy>
Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: omobolaji adeyan <omobolaji.adeyan@gmail.com>
|
2026-06-17 12:15:14 +02:00 |
|
Rubén De la Torre Vico
|
0463cd1559
|
fix(api): disable ASGI lifespan probe and tune SSE worker loop/connections (#11626)
|
2026-06-17 11:16:58 +02:00 |
|