Josema Camacho
|
b44f8ebf5f
|
fix(api): add query-level retry with primary fallback to rls_transaction via execute_wrapper (#10379)
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-07-09 17:47:03 +02:00 |
|
Hugo Pereira Brito
|
be78fe8374
|
fix(jira): surface dispatch failures (#11918)
|
2026-07-09 16:09:12 +01:00 |
|
Josema Camacho
|
bf9c53a4c3
|
fix(api): keep auth tests order-safe after token revocation (#11919)
|
2026-07-09 15:41:51 +02:00 |
|
Adrián Peña
|
18b3c49234
|
fix(api): invalidate tokens after password updates (#11901)
|
2026-07-09 10:36:58 +02:00 |
|
Adrián Peña
|
84ea68927f
|
fix(api): scope user role updates to tenant (#11903)
|
2026-07-09 10:36:49 +02:00 |
|
Josema Camacho
|
3461f9ac49
|
test(api): reduce report, provider, auth, and sentry test costs (#11888)
|
2026-07-08 14:31:53 +02:00 |
|
Adrián Peña
|
6c5f54808d
|
feat: add changelog fragments workflow (#11572)
|
2026-07-08 10:19:12 +02:00 |
|
Prowler Bot
|
18e1bf5195
|
chore(release): Bump versions to v5.34.0 (#11874)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-07-07 18:23:01 +02:00 |
|
Josema Camacho
|
5e00c4bfcf
|
chore(docs): update changelogs for 5.33.0 (#11866)
|
2026-07-07 13:07:40 +02:00 |
|
Hugo Pereira Brito
|
ad04e69c35
|
fix(kubernetes): reject exec auth in cloud kubeconfigs (#11753)
|
2026-07-07 09:57:46 +01:00 |
|
Adrián Peña
|
6cae37174c
|
fix(api): queue provider scans when one is active (#11848)
|
2026-07-07 10:28:41 +02:00 |
|
Pedro Martín
|
3cc8f86780
|
feat(api): remove provider credentials for PDF report (#11845)
|
2026-07-07 09:45:34 +02:00 |
|
Pedro Martín
|
81c3152ebb
|
chore(changelog): prepare for 5.32.1 (#11856)
Co-authored-by: César Arroba <19954079+cesararroba@users.noreply.github.com>
|
2026-07-06 16:14:20 +02:00 |
|
Adrián Peña
|
7b5d724bb7
|
fix: handle invitations in social and SAML auth (#11752)
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
|
2026-07-06 14:49:07 +02:00 |
|
Hugo Pereira Brito
|
398a0a484f
|
fix(api): restrict user profile updates to self (#11792)
|
2026-07-03 11:53:01 +01:00 |
|
Josema Camacho
|
0cf6f2f83e
|
fix(api): add attack paths scan DB defaults (#11826)
|
2026-07-03 11:30:55 +02:00 |
|
Prowler Bot
|
2e37188c9f
|
chore(release): Bump versions to v5.33.0 (#11820)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-07-02 16:56:03 +02:00 |
|
Pepe Fagoaga
|
a76ba156d5
|
chore(changelog): v5.32.0 (#11805)
|
2026-07-02 13:17:56 +02:00 |
|
Josema Camacho
|
87a15d7bb8
|
feat(api): support timestamp precision in findings filters (#11754)
|
2026-07-02 09:27:22 +02:00 |
|
renovate[bot]
|
f5bdacd07a
|
chore(docker): update docker (#11601)
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
|
2026-07-02 09:08:50 +02:00 |
|
Josema Camacho
|
72cf2a65a6
|
perf(api): optimize attack paths graph cleanup (#11755)
|
2026-07-01 16:28:59 +02:00 |
|
César Arroba
|
af6918d57b
|
chore(api): opt out of PowerShell telemetry in the API image (#11746)
|
2026-07-01 10:02:59 +02:00 |
|
Josema Camacho
|
c3ce3d2b3c
|
fix(api): preflight attack paths graph databases (#11743)
|
2026-06-30 17:01:48 +02:00 |
|
Daniel Barranquero
|
34e8e3ca61
|
chore(api): replace detect-secrets with kingfisher-bin to match the SDK (#11698)
|
2026-06-30 15:59:18 +02:00 |
|
Hugo Pereira Brito
|
36006de8ce
|
chore(ci): bump Trivy scanner to v0.71.2 (#11728)
|
2026-06-30 11:45:55 +01:00 |
|
Hugo Pereira Brito
|
e40e9a6483
|
fix(docker): remove build dependencies from images (#11730)
|
2026-06-30 11:31:51 +01:00 |
|
Josema Camacho
|
4e7e2f7eab
|
fix(api): cap attack paths sink sync batches (#11724)
|
2026-06-29 17:48:02 +02:00 |
|
Pedro Martín
|
d6f5f060ca
|
feat(compliance): add CIS Controls v8.1 universal framework (#11700)
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-06-26 13:27:02 +02:00 |
|
Josema Camacho
|
5793cd7e38
|
feat(api): make Attack Paths sink selectable between Neo4j and Neptune (#11524)
|
2026-06-26 10:22:29 +02:00 |
|
Josema Camacho
|
2b7db88694
|
fix(api): handle deleted scans during progress saves (#11696)
|
2026-06-25 14:12:12 +02:00 |
|
Pepe Fagoaga
|
7785829969
|
chore: changelog v5.31.1 (#11691)
|
2026-06-25 08:28:34 +02:00 |
|
Josema Camacho
|
4e00cfd1b6
|
fix(api): avoid mutating API key manager during auth (#11686)
|
2026-06-24 16:50:55 +02:00 |
|
Davidm4r
|
917e5d07ff
|
test(api): speed up API test suite (#11681)
|
2026-06-24 15:15:29 +02:00 |
|
Adrián Peña
|
dc228e8b36
|
docs(api): move SAML changelog entry to v5.31.0 (#11677)
|
2026-06-23 17:18:20 +02:00 |
|
Rubén De la Torre Vico
|
058a1dc8fe
|
chore: unify ruff tooling and route code quality through the Makefile (#11675)
|
2026-06-23 17:15:05 +02:00 |
|
Prowler Bot
|
3b0124d3fd
|
chore(release): Bump versions to v5.32.0 (#11673)
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
|
2026-06-23 16:53:29 +02:00 |
|
Josema Camacho
|
fb995a79bf
|
chore: modify changelogs for 5.31.0 release (#11671)
|
2026-06-23 14:09:52 +02:00 |
|
Josema Camacho
|
2375f1d962
|
fix(api): uvicorn worker keepalive (#11663)
Co-authored-by: Copilot Autofix powered by AI <175728472+Copilot@users.noreply.github.com>
|
2026-06-22 16:30:33 +02:00 |
|
abdou
|
30d737c7d7
|
fix(api): bound Celery worker concurrency to a configurable default (#11075)
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
|
2026-06-22 14:05:11 +02:00 |
|
Pepe Fagoaga
|
7f96d895bb
|
fix: API changelog from advisory merge (#11649)
|
2026-06-19 13:48:47 +02:00 |
|
Adrián Peña
|
bf3b5c2ba7
|
Merge commit from fork
* fix(saml): cross-tenant account takeover via SAML domain claiming
* chore(changelog): add PR #
* fix(api): bind SAML tokens to validated domain
- Reject SAML assertions with mismatched email domains
- Issue SAML tokens from the validated ACS tenant
- Add regression coverage for cross-tenant SAML token issuance
* fix(api): resolve SAML tenant inside RLS context
- Load the SAML tenant relation before leaving the RLS transaction
- Avoid lazy tenant lookups during the SAML ACS finish flow
---------
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
|
2026-06-19 13:38:51 +02:00 |
|
Josema Camacho
|
6d8d553610
|
fix(api): set gunicorn keep-alive above the load balancer idle timeout to stop 502s (#11647)
|
2026-06-19 12:49:49 +02:00 |
|
Josema Camacho
|
99285d4656
|
fix(api): close DB connections per request to stop ASGI replica connection leak (#11640)
|
2026-06-18 17:42:19 +02:00 |
|
Adrián Peña
|
19629e9bb8
|
fix: simplify local dev launch workflow (#11641)
|
2026-06-18 16:51:02 +02:00 |
|
Adrián Peña
|
b89b427a86
|
feat: add Makefile local development stack (#11637)
|
2026-06-18 16:37:42 +02:00 |
|
Pedro Martín
|
c0ae8b9739
|
feat(compliance): add DORA compliance framework for Azure (#11551)
|
2026-06-18 08:56:04 +02:00 |
|
Josema Camacho
|
bae74b8181
|
fix(api): ignore RequestAborted from health-check probe disconnects in Sentry (#11632)
|
2026-06-17 16:20:17 +02:00 |
|
Josema Camacho
|
f1a30f706a
|
fix(api): raise Gunicorn worker timeout to 120s via GUNICORN_TIMEOUT (#11631)
|
2026-06-17 14:04:36 +02:00 |
|
Rubén De la Torre Vico
|
0463cd1559
|
fix(api): disable ASGI lifespan probe and tune SSE worker loop/connections (#11626)
|
2026-06-17 11:16:58 +02:00 |
|
Pepe Fagoaga
|
7b8ce51263
|
chore(changelog): v5.30.2 (#11624)
|
2026-06-17 09:27:14 +02:00 |
|