Hugo P.Brito
|
7b9638b36e
|
Merge remote-tracking branch 'origin/master' into resolve-pr11753-conflicts
|
2026-07-03 12:48:57 +01:00 |
|
Hugo Pereira Brito
|
efb86bb7ab
|
chore: remove Dependabot config (#11834)
|
2026-07-03 12:48:17 +01:00 |
|
Hugo P.Brito
|
d297159a5b
|
chore: merge master into PROWLER-2085 kubeconfig fix
|
2026-07-03 12:12:36 +01:00 |
|
Hugo Pereira Brito
|
398a0a484f
|
fix(api): restrict user profile updates to self (#11792)
|
2026-07-03 11:53:01 +01:00 |
|
Sanjay Santhanam
|
55924d8150
|
fix(compliance): skip MANUAL findings in section tally to avoid KeyError (#11823)
Co-authored-by: pedrooot <pedromarting3@gmail.com>
|
2026-07-03 12:19:32 +02:00 |
|
Josema Camacho
|
0cf6f2f83e
|
fix(api): add attack paths scan DB defaults (#11826)
|
2026-07-03 11:30:55 +02:00 |
|
Pepe Fagoaga
|
cf18093261
|
chore(onboarding): rename account -> provider (#11827)
|
2026-07-03 09:33:37 +02:00 |
|
Josema Camacho
|
1850e209e6
|
docs(attack-paths): update tutorial for the new UI (#11824)
|
2026-07-02 18:34:49 +02:00 |
|
Prowler Bot
|
2e37188c9f
|
chore(release): Bump versions to v5.33.0 (#11820)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-07-02 16:56:03 +02:00 |
|
Josema Camacho
|
4ae7c67d3f
|
docs: add findings triage guide (#11793)
|
2026-07-02 13:33:30 +02:00 |
|
Pepe Fagoaga
|
a76ba156d5
|
chore(changelog): v5.32.0 (#11805)
|
2026-07-02 13:17:56 +02:00 |
|
Alejandro Bailo
|
cd90a91158
|
fix(ui): address findings triage QA feedback (#11791)
|
2026-07-02 12:43:06 +02:00 |
|
Son Sulung Suryahatta Asnan
|
e1b23e2526
|
feat(s3): new check s3_bucket_object_public to detect public objects (#9517)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-07-02 11:41:29 +02:00 |
|
Legin
|
537c3ea71e
|
feat(azure): filtering scans at resource group level (#10657)
Signed-off-by: Legin-ML <leginml2004@gmail.com>
|
2026-07-02 10:27:53 +01:00 |
|
Maringanti Vasist Acharya
|
b6f74c7284
|
feat(m365): add exchange application access policy check (#11247)
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
|
2026-07-02 10:16:07 +01:00 |
|
César Arroba
|
8cd008ba91
|
chore(ci): enable Renovate routine version updates (#11789)
|
2026-07-02 10:34:54 +02:00 |
|
César Arroba
|
1f13e1d348
|
chore(ci): disable Dependabot version updates in favor of Renovate (#11788)
|
2026-07-02 09:30:32 +02:00 |
|
Josema Camacho
|
87a15d7bb8
|
feat(api): support timestamp precision in findings filters (#11754)
|
2026-07-02 09:27:22 +02:00 |
|
Hugo Pereira Brito
|
41c3d98afb
|
Merge branch 'master' into PROWLER-2085-kubernetes-kubeconfig-exec-rce
|
2026-07-02 08:19:09 +01:00 |
|
renovate[bot]
|
f5bdacd07a
|
chore(docker): update docker (#11601)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
|
2026-07-02 09:08:50 +02:00 |
|
renovate[bot]
|
ce80fcd430
|
chore(ci): update github-actions (#11314)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
|
2026-07-02 09:08:16 +02:00 |
|
Pedro Martín
|
c1c080b072
|
docs(scan-config): add scan config for CLI as reference (#11786)
|
2026-07-02 08:59:18 +02:00 |
|
Alan Buscaglia
|
587187419f
|
feat(ui): add findings triage (#11704)
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
|
2026-07-01 17:55:33 +02:00 |
|
César Arroba
|
050a5915ca
|
fix(ci): detect conflict markers in route-group paths and flag unmergeable PRs (#11763)
|
2026-07-01 17:50:33 +02:00 |
|
Alejandro Bailo
|
d4e4d12c5a
|
docs(skills): add design system discipline to prowler-ui (#11764)
|
2026-07-01 17:31:07 +02:00 |
|
Josema Camacho
|
72cf2a65a6
|
perf(api): optimize attack paths graph cleanup (#11755)
|
2026-07-01 16:28:59 +02:00 |
|
Pedro Martín
|
48db27481d
|
docs(scan-config): add info about attaching scan config (#11751)
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-07-01 16:06:38 +02:00 |
|
Hugo P.Brito
|
b36170a5c8
|
test(api): use valid Kubernetes kubeconfig fixture
|
2026-07-01 14:57:36 +01:00 |
|
Adrián Peña
|
1247c5fb33
|
docs: clarify SAML userType role mapping (#11759)
|
2026-07-01 15:48:46 +02:00 |
|
Pedro Martín
|
69321418a3
|
feat(ui): improve scan config ux (#11731)
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
|
2026-07-01 15:45:38 +02:00 |
|
Pepe Fagoaga
|
301d13a4b9
|
docs: unify subscription banner (#11756)
|
2026-07-01 15:12:45 +02:00 |
|
Chirag Trivedi
|
3f8c1e822f
|
feat(apigateway): add check for secrets in REST API stage variables (#11188)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-07-01 14:24:18 +02:00 |
|
Hugo P.Brito
|
f5c2b991d3
|
fix(ui): show kubeconfig exec auth warning
|
2026-07-01 12:37:26 +01:00 |
|
Hugo P.Brito
|
d38b6e41c6
|
docs(changelog): note kubernetes exec auth hardening
|
2026-07-01 12:27:09 +01:00 |
|
Hugo P.Brito
|
b4c9cb5142
|
test(ui): cover kubeconfig backend-deferred validation
|
2026-07-01 12:14:17 +01:00 |
|
Sergio Garcia
|
1e1c1c018b
|
feat(iam): add AWS Bedrock AgentCore privilege escalation paths (#11726)
|
2026-07-01 12:49:34 +02:00 |
|
Hugo P.Brito
|
96d815a855
|
fix(kubernetes): reject exec auth in cloud kubeconfigs
|
2026-07-01 11:47:17 +01:00 |
|
琴焚音落
|
a212916a49
|
fix(github): skip archived repos in CODEOWNERS check (#11735)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-07-01 12:29:13 +02:00 |
|
Samyak Choudhary
|
883ffa1fdb
|
feat(m365): add Entra Conditional Access group management restriction (#11342)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-07-01 11:38:54 +02:00 |
|
Daniel Barranquero
|
21d9d6192e
|
feat(okta): add configurable API request throttling and rate-limit retries (#11702)
|
2026-07-01 10:30:43 +02:00 |
|
Hugo Pereira Brito
|
fd38a0ac03
|
feat(awslambda): add secrets_ignore_files to skip false-positive files (e.g. *.deps.json) in no-secrets-in-code check (#11222)
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
|
2026-07-01 09:03:25 +01:00 |
|
César Arroba
|
af6918d57b
|
chore(api): opt out of PowerShell telemetry in the API image (#11746)
|
2026-07-01 10:02:59 +02:00 |
|
César Arroba
|
9a9cbc997b
|
ci(workflows): push SDK image to Public ECR via OIDC (#11749)
|
2026-06-30 21:17:57 +02:00 |
|
César Arroba
|
aec500ee3b
|
fix(ci): harden pull_request_target workflows (persist-credentials + toJson) (#11747)
|
2026-06-30 18:29:29 +02:00 |
|
César Arroba
|
8fbc721223
|
ci(workflows): allowlist nodejs.org and Iconify endpoints in UI tests harden-runner (#11744)
|
2026-06-30 17:43:02 +02:00 |
|
Josema Camacho
|
c3ce3d2b3c
|
fix(api): preflight attack paths graph databases (#11743)
|
2026-06-30 17:01:48 +02:00 |
|
Hugo Pereira Brito
|
c46cbaaa4a
|
feat(sdk): limit selected high-volume AWS resource analysis (#11228)
|
2026-06-30 15:49:12 +01:00 |
|
Daniel Barranquero
|
34e8e3ca61
|
chore(api): replace detect-secrets with kingfisher-bin to match the SDK (#11698)
|
2026-06-30 15:59:18 +02:00 |
|
Daniel Barranquero
|
5dac8a0a53
|
feat(sdk): replace detect-secrets library with kingfisher (#11694)
|
2026-06-30 15:36:23 +02:00 |
|
Alejandro Bailo
|
ed1fec8866
|
docs: add scan scheduling guide (#11729)
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-06-30 15:07:08 +02:00 |
|