prowler

mirror of https://github.com/prowler-cloud/prowler.git synced 2026-04-14 00:19:46 +00:00

Author	SHA1	Message	Date
Hugo P.Brito	6cacef7d82	fix(intune): restore service retry logic and tests Reverts the accidental removal of intune_service.py retry logic and its corresponding tests in intune_service_test.py.	2026-04-08 16:15:47 +01:00
Hugo P.Brito	dce387d30b	fix(intune): remove out-of-scope service changes and test __init__.py Revert intune_service.py and intune_service_test.py to master state (retry logic was not part of this check). Remove unnecessary __init__.py from test directory.	2026-04-08 16:13:44 +01:00
Hugo P.Brito	1c9dd87817	fix(intune): use MagicMock instances in compliance check tests Replace mock.MagicMock (class) with mock.MagicMock() (instance) and explicitly set verification_error=None to prevent state pollution between tests when pytest runs them in alphabetical order.	2026-04-08 16:10:03 +01:00
Hugo P.Brito	c4a695138a	chore: revert out-of-scope change in mcp_server/CHANGELOG.md	2026-04-08 16:10:03 +01:00
Hugo P.Brito	1107821d61	Merge remote-tracking branch 'origin/master' into PROWLER-855-mt-1054-intune-compliance-default	2026-04-08 16:10:03 +01:00
Hugo P.Brito	c1100ec0b4	refactor(intune): rename compliance check to intune_device_compliance_policy_unassigned_devices_not_compliant_by_default Rename from intune_device_compliance_policy_marks_noncompliant to better reflect the check's purpose: verifying that unassigned devices are marked as not compliant by default. Update metadata, compliance mapping, tests, and changelog accordingly.	2026-04-08 16:10:02 +01:00
Pablo Fernandez Guerra (PFE)	406eedd68a	chore(ui): unset GIT_WORK_TREE in pre-commit hook (#10574 ) Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com>	2026-04-08 14:27:12 +02:00
lydiavilchez	bc38104903	feat(googleworkspace): add calendar service checks using Cloud Identity Policy API (#10597 )	2026-04-08 13:26:56 +02:00
Andoni Alonso	9290d7e105	feat(sdk): warn when sensitive CLI flags receive explicit values (#10532 )	2026-04-08 13:15:05 +02:00
lydiavilchez	72e8f09c07	feat(googleworkspace): add directory check for CIS 1.1.3 - super admin only admin roles (#10488 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-04-08 12:05:15 +02:00
Pepe Fagoaga	1d43885230	docs: update architecture diagram (#10604 )	2026-04-08 11:05:28 +02:00
Adrián Peña	e6aedcb207	feat(api): support sort by delta on finding-groups endpoints (#10606 )	2026-04-08 11:04:57 +02:00
Kay Agahd	89fe867944	fix(aws): recognize service-specific condition keys as restrictive in is_policy_public (#10600 ) Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>	2026-04-08 10:55:55 +02:00
Pepe Fagoaga	2be2753c55	fix(codeartifact): only retrieve the latest version from a package (#10243 ) Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>	2026-04-08 09:21:19 +02:00
Josema Camacho	283259f34c	fix(sdk): resolve empty-set bug in `_enabled_regions` causing 36-region client creation and CI timeouts (#10598 )	2026-04-08 08:40:58 +02:00
Adrián Peña	abaacd7dbf	feat(api): finding group first_seen_at semantics and resource delta (#10595 )	2026-04-07 16:41:08 +02:00
Hugo P.Brito	a39863f528	test(intune): add tests for device compliance policy marks noncompliant check Covers secure_by_default true/false/None and settings being None. Uses exact string assertions following Prowler test conventions.	2026-04-07 14:28:55 +01:00
Hugo P.Brito	f20da3ea5e	feat(intune): add device compliance policy marks noncompliant check (MT.1054) Implements Prowler check equivalent to Maester test MT.1054. Verifies that the Intune built-in Device Compliance Policy marks devices with no compliance policy assigned as 'Not compliant' by checking the secureByDefault setting.	2026-04-07 14:28:49 +01:00
rchotacode	5e1e4bd8e4	fix(oci): Mutelist support (#10566 ) Co-authored-by: Ronan Chota <ronan.chota@saic.com> Co-authored-by: Hugo P.Brito <hugopbrito@users.noreply.github.com>	2026-04-07 13:23:51 +01:00
Hugo P.Brito	5f6cbf89e4	merge: resolve conflicts with master	2026-04-07 13:00:07 +01:00
Davidm4r	33efd72b97	chore(deps): bump authlib from 1.6.5 to 1.6.9 (#10579 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>	2026-04-07 13:31:59 +02:00
Pepe Fagoaga	b2788df8cc	chore(issues): automate conversation lock on issue close (#10596 )	2026-04-07 13:07:02 +02:00
Andoni Alonso	b1b361af8b	chore(ci): update Pablo user for labeling purposes (#10594 )	2026-04-07 12:54:04 +02:00
Josema Camacho	8bc03f8d04	fix(api): remove clear_cache from attack paths read-only query endpoints (#10586 )	2026-04-07 12:46:51 +02:00
Andoni Alonso	ca03d9c0a9	docs: add Google Workspace SAML SSO configuration guide (#10564 ) Co-authored-by: Alan Buscaglia <Alan-TheGentleman@users.noreply.github.com> Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>	2026-04-07 12:03:21 +02:00
Kay Agahd	8985280621	fix(azure): create distinct report per key/secret in keyvault checks (#10332 ) Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com> Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>	2026-04-07 09:36:48 +01:00
Pepe Fagoaga	b7ee2b9690	chore: rename UI tab regarding the environment (#10588 )	2026-04-07 10:30:01 +02:00
Alejandro Bailo	6b2d9b5580	feat(ui): add Vercel provider (#10191 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-04-07 10:13:18 +02:00
kaiisfree	c99ed991b7	fix: show all checks including threat-detection in --list-checks (#10578 ) Co-authored-by: Claude <noreply@anthropic.com> Co-authored-by: kaiisfree <kai@users.noreply.github.com> Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>	2026-04-06 16:55:15 +01:00
Hugo Pereira Brito	7c0034524a	fix(sdk): add missing __init__.py for codebuild GitHub orgs check (#10584 )	2026-04-06 16:40:04 +01:00
Josema Camacho	749110de75	chore(sdk): bump cryptography to 46.0.6, oci to 2.169.0, and alibabacloud-tea-openapi to 0.4.4 (#10535 )	2026-04-06 15:09:33 +02:00
Adrián Peña	5fff3b920d	fix(api): exclude spurious retrieve from Jira docs and add known limitations (#10580 )	2026-04-06 14:30:38 +02:00
Pablo Fernandez Guerra (PFE)	961f9c86da	feat(ui): Add tenant management (#10491 ) Co-authored-by: Pablo Fernandez <pfe@NB0240.local> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com> Co-authored-by: David <david.copo@gmail.com>	2026-04-06 10:31:30 +02:00
Andoni Alonso	0f1da703d1	docs(image): add Prowler App documentation and authentication guide (#10527 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-04-06 09:59:56 +02:00
Pepe Fagoaga	07f3416493	feat(mcp): Add resource events tool (#10412 )	2026-04-06 08:42:04 +02:00
Alan Buscaglia	509ec74c3d	fix(ui): findings groups improvements — security fixes, code quality, and UX feedback (#10513 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>	2026-04-01 15:54:46 +02:00
Adrián Peña	ab8e83da3f	fix(api,ui): dynamically fetch Jira issue types instead of hardcoding "Task" (#10534 ) Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>	2026-04-01 14:37:49 +02:00
Pablo Fernandez Guerra (PFE)	6ac90eb1b5	chore(ui): add pnpm supply chain security protections (#10471 ) Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com> Co-authored-by: César Arroba <cesar@prowler.com>	2026-04-01 14:10:01 +02:00
Alejandro Bailo	af6198e6c2	feat(api): integrate Vercel provider into API layer (#10190 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-04-01 13:20:49 +02:00
Josema Camacho	dfe06a1077	fix(ui): allow selecting failed scans when graph data is available (#10531 )	2026-04-01 11:08:34 +02:00
Alejandro Bailo	4f86667433	feat(sdk): add Vercel provider with 30 security checks (#10189 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com> Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>	2026-03-31 16:21:22 +02:00
Andoni Alonso	4bb1e5cff7	fix(sdk): redact sensitive CLI flags in HTML output (#10518 )	2026-03-31 15:01:09 +02:00
Pedro Martín	99b80ebbd9	chore(actions): add pr-check-compliance-mapping action (#10526 )	2026-03-31 13:38:20 +02:00
rchotacode	d18c5a8974	fix(oci): fix identity clients (#10520 ) Co-authored-by: Ronan Chota <ronan.chota@saic.com> Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-03-31 09:42:19 +02:00
Hugo Pereira Brito	ab00c2dce1	feat(m365): add entra_conditional_access_policy_block_elevated_insider_risk security check (#10234 ) Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-03-30 17:27:00 +02:00
Pablo Fernandez Guerra (PFE)	765f9c72f2	docs: add missing pre-commit hooks setup for TruffleHog, Safety and Hadolint (#10448 ) Co-authored-by: Pablo Fernandez <pfe@NB0240.local> Co-authored-by: Claude Opus 4.6 (1M context) <noreply@anthropic.com> Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>	2026-03-30 16:43:32 +02:00
Erich Blume	de5bb94ff6	fix(image): pass registry arguments through `init_global_provider` (#10470 ) Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>	2026-03-30 15:19:01 +02:00
lydiavilchez	c009a2128a	feat(google-workspace): add CISA SCuBA Baselines compliance (#10466 ) Co-authored-by: Pedro Martín <pedromarting3@gmail.com>	2026-03-30 14:33:38 +02:00
Alejandro Bailo	50556df713	feat(ui): add findings grouped view (#10425 ) Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com> Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>	2026-03-30 14:17:36 +02:00
Hugo Pereira Brito	3b875484b0	feat(m365): add device registration MFA and harden Intune enrollment CA check (#10222 ) Co-authored-by: Hugo Brito <hugopbrito@users.noreply.github.com> Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>	2026-03-30 13:36:05 +02:00

1 2 3 4 5 ...

8042 Commits