ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-03-22 03:08:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,899 Commits 384 Branches 179 Tags
b7571abaebfe3e992883cff621c0d01cd9a26267
Commit Graph

439 Commits

Author SHA1 Message Date
Sandiyo Christan
88ce188103 fix(api): [security] use psycopg2.sql to safely compose DDL in PostgresEnumMigration (#10166) 
Co-authored-by: Claude Sonnet 4.6 <noreply@anthropic.com>
Co-authored-by: Adrián Peña <adrianjpr@gmail.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-17 13:24:24 +01:00
Zakir Jiwani
887a20f06e feat: CORS_ALLOWED_ORIGINS configurable via environment variable (#10355) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-17 09:55:06 +01:00
Josema Camacho
6a4278ed4d fix(docs): setting a couple of API PRs in the next release instead of 5.20 (#10357) 2026-03-17 09:00:56 +01:00
Josema Camacho
787a339cd9 feat(attack-paths): scans add tenant and provider related labels to nodes (#10308) 2026-03-16 16:31:15 +01:00
Josema Camacho
ad02801c74 refactor(attack-paths): complete migration to private graph labels and properties (phase 2) (#10268) 2026-03-16 12:34:58 +01:00
Pepe Fagoaga
b8c6f3ba67 chore(skills): add Django migrations skills (#10260) 2026-03-12 18:37:43 +01:00
Prowler Bot
80a814afce chore(api): Bump version to v1.22.0 (#10326) 
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
 2026-03-12 18:26:23 +01:00
Josema Camacho
97a91bfaaa docs(changelog): fix formatting for v5.20.0 release (#10316) 2026-03-12 12:58:02 +01:00
Josema Camacho
4dc3765670 fix(api): add security hardening for Attack Paths custom query endpoint (#10238) 2026-03-12 10:46:29 +01:00
Josema Camacho
628a076118 docs(attack-paths): add module docstring to scan orchestrator (#10277) 2026-03-12 08:49:48 +01:00
Josema Camacho
57bcb74d0d fix(api): upgrade Cartography to 0.132.0 to fix exposed_internet on ELB/ELBv2 nodes (#10272) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-11 18:12:43 +01:00
lydiavilchez
65a7098104 feat(api): add Google Workspace provider API integration (#10247) 2026-03-11 12:06:30 +01:00
Josema Camacho
57f3920e66 refactor(api): migrate Attack Paths network exposure queries from APOC to openCypher (#10266) 2026-03-10 16:48:16 +01:00
Josema Camacho
3288a4a131 fix(api): add missing logging for Attack Paths query execution and scan error handling (#10269) 2026-03-10 16:47:53 +01:00
Pepe Fagoaga
d3213e9f1e chore(providers): Return 409 on conflict (#10293) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-03-10 10:54:09 +01:00
Pedro Martín
86daf7bc05 fix(pdf): align ENS report requirement status (#10270) 2026-03-06 12:36:50 +01:00
Prowler Bot
4e80e0564d chore(api): Bump version to v1.21.0 (#10254) 
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
 2026-03-04 21:18:34 +01:00
Pepe Fagoaga
c71ae75c70 chore(changelog): release v5.19.0 (#10180) 2026-03-02 13:24:03 +01:00
Andoni Alonso
8adb4f43ad chore: bump Trivy to 0.69.2 (#10210) 2026-03-02 09:54:34 +01:00
Josema Camacho
b3a67fa1a0 feat(api): add accept header text/plain to attack paths query endpoints for support llm-friendly output (#10162) 
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
 2026-02-26 12:53:58 +01:00
Adrián Peña
902558f2d4 feat(api): block attack-paths-scans custom queries and schema endpoints (#10177) 2026-02-26 12:27:52 +01:00
Adrián Peña
eacb3430cb fix(api): recalc tenant compliance summary after provider deletion (#10172) 2026-02-26 11:18:15 +01:00
Adrián Peña
e47f2b4033 fix(api): harden security hub retries (#10144) 2026-02-25 11:34:41 +01:00
Josema Camacho
247bde1ef4 feat(attack-paths): add custom query and cartography schema endpoints (#10149) 2026-02-24 15:49:50 +01:00
Andoni Alonso
c159181d27 feat(api): add Image provider support for container image scanning (#10128) 2026-02-24 13:06:34 +01:00
Daniel Barranquero
030d053c84 chore(openstack): support multi-region in the same provider (#10135) 2026-02-24 12:50:52 +01:00
Josema Camacho
e688e60fde feat(attack-paths): configure Neo4j for read-only queries (#10140) 2026-02-24 10:15:22 +01:00
Adrián Peña
584455a12a feat(api): add finding groups summaries (#9961) 
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
 2026-02-23 13:44:45 +01:00
Josema Camacho
75c7f61513 feat(api): private labels and properties in Attack Paths graph - phase 1 (#10124) 2026-02-23 11:30:26 +01:00
Josema Camacho
b5d2a75151 feat(api): filter Attack Paths query results by provider_id (#10118) 2026-02-23 11:06:30 +01:00
Josema Camacho
c12f27413d fix(api): handle provider deletion race condition in attack paths scan (#10116) 2026-02-23 10:53:58 +01:00
Josema Camacho
a9c7351489 fix(api): upgrade cartography to 0.129.0 and neo4j driver to 6.x (#10110) 2026-02-18 16:28:24 +01:00
Alan Buscaglia
639333b540 feat(ui): setup vitest with react testing library and TDD workflow (#9925) 2026-02-18 11:25:50 +01:00
Josema Camacho
be3be3eb62 fix(api): clean up temp Neo4j databases on scan failure and provider deletion (#10101) 
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
 2026-02-18 10:18:34 +01:00
Daniel Barranquero
338d514197 fix(api): gcp project id validation for legacy projects (#10078) 2026-02-18 10:11:07 +01:00
Josema Camacho
7698cdce2e feat(attack-paths): add graph_data_ready field to decouple query availability from scan state (#10089) 
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
 2026-02-17 17:29:36 +01:00
Pedro Martín
e8c48b7827 feat(reporting): support CSA CCM PDF reports (#10088) 2026-02-17 09:48:45 +01:00
Josema Camacho
bb34f6cc3d refactor(api): remove graph_database and is_graph_database_deleted from AttackPathsScan (#10077) 2026-02-16 12:46:49 +01:00
Josema Camacho
02b58d8a31 fix(api): mark attack paths scan as failed when celery task fails (#10065) 2026-02-13 13:20:38 +01:00
Josema Camacho
ceb4691c36 build(deps): bump cryptography to 44.0.3 and py-ocsf-models to 0.8.1 (#10059) 2026-02-13 12:36:38 +01:00
Pedro Martín
961b247d36 feat(compliance): add csa ccm for the alibabacloud provider (#10061) 2026-02-13 10:36:29 +01:00
Pedro Martín
627088e214 feat(compliance): add csa ccm for the oraclecloud provider (#10057) 2026-02-12 18:06:51 +01:00
Josema Camacho
93ac38ca90 feat(attack-pahts--aws-queries): The rest of Path Finding paths queries (#10008) 2026-02-12 17:09:08 +01:00
Daniel Barranquero
b94c8a5e5e feat(api): add OpenStack provider support (#10003) 2026-02-12 14:40:19 +01:00
dependabot[bot]
1f4e308374 build(deps): bump pillow from 12.1.0 to 12.1.1 in /api (#10027) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Josema Camacho <josema@prowler.com>
 2026-02-12 14:26:03 +01:00
Pedro Martín
4d569d5b79 feat(compliance): add csa ccm for the gcp provider (#10042) 2026-02-12 14:13:24 +01:00
Pedro Martín
29090adb03 feat(compliance): add csa ccm for the azure provider (#10039) 2026-02-12 13:35:22 +01:00
Pedro Martín
f55983a77d feat(compliance): add csa ccm 4.0 for the aws provider (#10018) 2026-02-12 13:10:59 +01:00
Adrián Peña
378c2ff7f6 fix(saml): prevent SAML role mapping from removing last manage-account user (#10007) 2026-02-10 15:57:34 +01:00
Josema Camacho
530fef5106 chore(attack-pahts): Internet node is now created while Attack Paths scan (#9992) 2026-02-09 12:17:51 +01:00