ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-04-04 22:46:55 +00:00
Code Issues Packages Projects Releases Wiki Activity
8,008 Commits 421 Branches 180 Tags
8d07fe7ef0d0bcf9912f4dbd82575cc0088ca3e5
Commit Graph

568 Commits

Author SHA1 Message Date
dependabot[bot]
8d07fe7ef0 chore(deps): bump actions/cache from 5.0.3 to 5.0.4 
Bumps [actions/cache](https://github.com/actions/cache) from 5.0.3 to 5.0.4.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](cdf6c1fa76...668228422a)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-version: 5.0.4
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2026-04-02 02:43:18 +00:00
Pablo Fernandez Guerra (PFE)
6ac90eb1b5 chore(ui): add pnpm supply chain security protections (#10471) 
Co-authored-by: Pablo F.G <pablo.fernandez@prowler.com>
Co-authored-by: César Arroba <cesar@prowler.com>
 2026-04-01 14:10:01 +02:00
Alejandro Bailo
4f86667433 feat(sdk): add Vercel provider with 30 security checks (#10189) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-03-31 16:21:22 +02:00
Pedro Martín
99b80ebbd9 chore(actions): add pr-check-compliance-mapping action (#10526) 2026-03-31 13:38:20 +02:00
César Arroba
6f6d62f51f fix(ci): remove DOCKER_HUB_REPOSITORY secret and add toniblyx mirror push (#10512) 2026-03-30 11:53:04 +02:00
César Arroba
de492a770c fix(ci): remove DOCKER_HUB_REPOSITORY secret from sdk container workflow (#10509) 2026-03-30 10:20:38 +02:00
César Arroba
e9009f783b fix(ci): remove setup-buildx-action from create-manifest jobs (#10508) 2026-03-30 10:01:32 +02:00
Pepe Fagoaga
8267fc4813 fix(step_security): keep notify in audit mode (#10496) 2026-03-27 16:01:24 +01:00
Josema Camacho
cc197ea901 feat(api): add periodic cleanup of stale Attack Paths scans with dead-worker detection (#10387) 2026-03-27 14:17:22 +01:00
Pepe Fagoaga
2b5d015e09 feat(security): add missing endpoints to allowlist (#10495) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-27 13:53:52 +01:00
Adrián Peña
700b51ddad chore: update Python version references from 3.9 to 3.10 (#10493) 2026-03-27 13:13:36 +01:00
Pepe Fagoaga
417be55604 feat(security): block mode for hardened runners (#10482) 2026-03-27 13:08:59 +01:00
Terry Franklin
0a11ca4a68 feat(celery): VALKEY_SCHEME environment variable (#10420) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-27 09:22:35 +01:00
Pepe Fagoaga
73907db856 fix(trivy-scan): don't comment if PR from fork (#10490) 2026-03-27 08:37:19 +01:00
stepsecurity-app[bot]
716c130140 feat(security): security best practices from StepSecurity (#10480) 
Signed-off-by: StepSecurity Bot <bot@stepsecurity.io>
Co-authored-by: stepsecurity-app[bot] <188008098+stepsecurity-app[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-26 13:58:19 +01:00
Pepe Fagoaga
20cf5562b8 chore: update org members (#10461) 2026-03-25 09:36:10 +01:00
Pepe Fagoaga
36279f694c chore(gha): ignore zizmor rules and fix version comment (#10459) 2026-03-25 09:09:36 +01:00
César Arroba
c991a1d0e8 chore: fix UI bump version (#10451) 2026-03-24 17:39:49 +01:00
César Arroba
cece2cb87e chore: pin Prowler version to lastest master commit on push (#10384) 2026-03-19 14:32:38 +01:00
rchotacode
0f2fdcfb3f chore(oraclecloud): Add Oracle Defense Cloud Support (#10376) 
Co-authored-by: Ronan Chota <ronan.chota@saic.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
Co-authored-by: Hugo P.Brito <hugopbrit@gmail.com>
 2026-03-19 09:41:58 +00:00
Pepe Fagoaga
febd2c8fdb fix(ci): checkout upstream repo for tests (#10356) 2026-03-17 08:47:12 +01:00
Josema Camacho
b311456160 fix(security): Ignore cryptography vulnerability until we can upgrade it (#10345) 2026-03-16 13:19:37 +01:00
dependabot[bot]
06e32e69c0 build(deps): bump actions/setup-node from 6.1.0 to 6.2.0 (#9933) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:51:27 +01:00
dependabot[bot]
6e9f54d1ba build(deps): bump peter-evans/create-pull-request from 8.0.0 to 8.1.0 (#9937) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:51:07 +01:00
dependabot[bot]
41a7b19c7d build(deps): bump actions/checkout from 6.0.1 to 6.0.2 (#9936) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:46:40 +01:00
dependabot[bot]
c972f19059 build(deps): bump actions/cache from 5.0.1 to 5.0.3 (#9934) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:45:26 +01:00
dependabot[bot]
27d074abe4 build(deps): bump actions/setup-python from 5.3.0 to 6.2.0 (#9932) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:44:28 +01:00
dependabot[bot]
28060064de build(deps): bump docker/login-action from 3.6.0 to 3.7.0 (#9931) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:41:34 +01:00
dependabot[bot]
fd695b6992 build(deps): bump regclient/actions from f61d18f46c86af724a9c804cb9ff2a6fec741c7c to da9319db8e44e8b062b3a147e1dfb2f574d41a03 (#10202) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:41:16 +01:00
dependabot[bot]
f55e87d659 build(deps): bump tj-actions/changed-files from 47.0.1 to 47.0.4 (#10203) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:40:31 +01:00
dependabot[bot]
29b835360a build(deps): bump aws-actions/configure-aws-credentials from 5.1.1 to 6.0.0 (#10205) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:40:18 +01:00
dependabot[bot]
16e15a3a71 build(deps): bump github/codeql-action from 4.31.9 to 4.32.4 (#10204) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:39:57 +01:00
dependabot[bot]
a6d47bdb2b build(deps): bump docker/build-push-action from 6.18.0 to 6.19.2 (#10201) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-03-13 09:39:43 +01:00
Alan Buscaglia
ba92a592ab fix(ci): prevent grep exit code 1 from failing empty dir check (#10315) 2026-03-12 11:39:01 +01:00
Alan Buscaglia
e0d61ba5d1 fix(ci): gracefully skip E2E when test directories are empty (#10311) 2026-03-12 10:38:51 +01:00
Alan Buscaglia
125ba830f7 fix(ci): prevent E2E auth setups from running on broad path matches (#10304) 2026-03-11 15:38:18 +01:00
Utwo
e40beee315 feat: Helm CD (#10079) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-11 10:07:22 +01:00
Pepe Fagoaga
9c2cb5efa8 fix(elbv2): Handle post-quantum (PQ) TLS policies (#10219) 2026-03-03 10:18:00 +01:00
Andoni Alonso
8adb4f43ad chore: bump Trivy to 0.69.2 (#10210) 2026-03-02 09:54:34 +01:00
Pepe Fagoaga
8af9b333c9 ci: restore persist credentials when no output is generated (#10211) 2026-03-02 09:14:02 +01:00
Pepe Fagoaga
4e71a9dcf1 ci(security): Add zizmor (#10208) 2026-03-02 08:25:13 +01:00
Pepe Fagoaga
7adcbed727 fix(ci): zizmor security improvements (#10207) 2026-03-02 08:24:51 +01:00
Andoni Alonso
8be218b29f fix(ci): harden GitHub Actions workflows against expression injection (#10200) 2026-03-01 19:58:43 +01:00
Alan Buscaglia
09302f9d7d fix(ci): include E2E test paths in impact analysis module matching (#10176) 2026-02-26 12:10:36 +01:00
lydiavilchez
9ee8072572 feat(googleworkspace): add Google Workspace provider with directory service and super admin check (#10022) 2026-02-25 12:17:13 +01:00
Pepe Fagoaga
51dbf17faa fix(workflow): prevent GitHub auto-linking in triage tables (#10143) 2026-02-24 08:39:55 +01:00
Pepe Fagoaga
cd12a9451f feat(ci): add AI-powered issue triage agentic workflow (#10073) 2026-02-23 16:09:35 +01:00
Josema Camacho
a9c7351489 fix(api): upgrade cartography to 0.129.0 and neo4j driver to 6.x (#10110) 2026-02-18 16:28:24 +01:00
Alan Buscaglia
639333b540 feat(ui): setup vitest with react testing library and TDD workflow (#9925) 2026-02-18 11:25:50 +01:00
Daniel Barranquero
a106cdf4c9 fix: oci regions actions labels (#10083) 2026-02-16 14:23:17 +01:00