ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-03-22 03:08:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,944 Commits 384 Branches 179 Tags
db18e4746757fb8ec6a42876072ae4912c3d8714
Commit Graph

1411 Commits

Author SHA1 Message Date
Daniel Barranquero
ea5ba82333 fix tests 2026-03-20 14:23:55 +01:00
Daniel Barranquero
273c8e4318 Merge branch 'master' into feat/vercel-sdk 2026-03-19 16:58:45 +01:00
Daniel Barranquero
cc7fa7d49a chore: update asserts in every unit test 2026-03-18 12:23:09 +01:00
Andoni Alonso
e8aaf5266a chore(sdk): bump pygithub from 2.5.0 to 2.8.0 (#10353) 2026-03-18 09:58:40 +01:00
Daniel Barranquero
fb62b81a9b fix: parser tests 2026-03-18 09:11:56 +01:00
Andoni Alonso
65e745d779 fix(sdk): skip strict CheckMetadata validators for external tool providers (#10363) 2026-03-18 09:11:39 +01:00
Daniel Barranquero
29cc9eae19 fix: remove init from tests files 2026-03-17 16:55:40 +01:00
Daniel Barranquero
0186e9f304 chore: remove cli authentication flags 2026-03-17 16:52:59 +01:00
Daniel Barranquero
a25c5d4e6a chore: add missing check tests 2026-03-17 16:30:25 +01:00
Pawan Gambhir
df680ef277 fix(route53): resolve false positive in dangling IP check (#9952) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-17 12:02:48 +01:00
Daniel Barranquero
1a1317c89c Merge branch 'master' into feat/vercel-sdk 2026-03-17 11:55:44 +01:00
Andoni Alonso
451071d694 feat(image): add image provider to UI (#10167) 
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com>
 2026-03-17 10:53:37 +01:00
shria :))
1cf6eaa0b7 feat(github): add organization_repository_deletion_limited check (#10185) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-03-16 16:22:36 +01:00
Daniel Barranquero
361f8548bf feat(azure): add 'entra_conditional_access_policy_require_mfa_for_admin_portals' check and update compliance (#10330) 2026-03-16 12:14:58 +01:00
Hugo Pereira Brito
c9284f8003 chore(models): add pydantic validators for CheckMetadata (#8583) 
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-03-16 10:36:08 +01:00
Hugo Pereira Brito
534ad3d04f feat(m365): add entra_device_code_flow_blocked security check (#10218) 2026-03-13 11:31:47 +01:00
Daniel Barranquero
b08cb8ffb3 fix(csv): move OU columns to the end (#10307) 2026-03-12 08:28:52 +01:00
Raajhesh Kannaa Chidambaram
39385567fc feat(organizations): add OU metadata to outputs (#10283) 
Co-authored-by: Raajhesh Kannaa Chidambaram <495042+raajheshkannaa@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-11 16:41:44 +01:00
Daniel Barranquero
e28bde797f feat(openstack): object storage service with 7 new checks (#10258) 2026-03-11 12:00:43 +01:00
Michael Wentz
c4d692f77b feat(guardduty): add org-wide delegated admin check across all regions (#9867) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-10 12:56:00 +01:00
Eran Cohen
0b461233c1 feat(iam): Add trusted IP configurable option to reduce false positives in 'opensearch' check (#8631) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-10 12:12:54 +01:00
Hugo Pereira Brito
9cf63a2a68 feat(m365): add custom entra_conditional_access_policy_compliant_device_hybrid_joined_device_mfa_required check (#10197) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-05 18:11:20 +01:00
Hugo Pereira Brito
726b5665d0 feat(m365): add entra_conditional_access_policy_approved_client_app_required_for_mobile security check (#10216) 
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
 2026-03-05 10:58:18 +01:00
Andoni Alonso
e8d2b4a189 fix(iac): include resource line range in finding UID to prevent duplicates (#10241) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-03 17:40:36 +01:00
Andoni Alonso
b61b6cba53 feat(sdk): add provider identity fields to OCSF unmapped output (#10240) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-03 16:42:08 +01:00
alejandrobailo
49841dd77a refactor(sdk): rename environment checks to project_environment 2026-03-03 15:22:24 +01:00
Pepe Fagoaga
71ee4213b3 chore(ingestions): rename flag, update docs (#10236) 2026-03-03 15:04:34 +01:00
Hugo Pereira Brito
e96ea54f3b feat(m365): add entra_break_glass_users_fido2_security_key_registered security check (#10213) 
Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com>
 2026-03-03 13:58:44 +01:00
Andoni Alonso
dfca97633e feat(sdk): add provider_uid to OCSF unmapped output (#10231) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-03 13:35:58 +01:00
Hugo Pereira Brito
548a137046 feat(m365): add entra_authentication_method_sms_voice_disabled security check (#10212) 2026-03-03 13:08:02 +01:00
Daniel Barranquero
012fd84cb0 chore: add provider-uid flag for iac provider (#10233) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-03 13:07:15 +01:00
Pepe Fagoaga
9c2cb5efa8 fix(elbv2): Handle post-quantum (PQ) TLS policies (#10219) 2026-03-03 10:18:00 +01:00
Andoni Alonso
efcbbf63c2 docs: review and fix documentation coverage for provider CLI flags (#10040) 2026-03-03 09:57:05 +01:00
Harsh Mishra
150abce4a8 fix(aws): respect AWS_ENDPOINT_URL for STS session creation (#10228) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-03-03 08:25:59 +01:00
Daniel Barranquero
dcf74113fc chore: modify M365 and Github account UIDs (#10226) 2026-03-02 17:22:09 +01:00
Hugo Pereira Brito
07dea4f402 refactor(m365): rename conditional access policy checks to include policy prefix (#10217) 2026-03-02 13:41:24 +01:00
Daniel Barranquero
b21ded6d46 feat(openstack): add image service with 6 checks (#10096) 2026-03-02 12:47:49 +01:00
Daniel Barranquero
8eddb48b16 feat(openstack): add blockstorage service with 7 checks (#10120) 
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-03-02 12:08:08 +01:00
Daniel Barranquero
d3ba93f0c0 feat(openstack): add networking service with 6 checks (#9970) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-03-02 11:55:37 +01:00
alejandrobailo
842dfc19b8 fix(vercel): remove __init__.py from test directories 2026-02-27 14:44:16 +01:00
alejandrobailo
5c2b51d1bf feat(sdk): add Vercel provider with 30 security checks 
- Add Vercel provider with API token authentication and team-scoped support
- Implement 6 services: authentication, deployment, domain, project, security, team
- Add 30 security checks covering token hygiene, deployment protection, WAF,
  SSL certificates, environment variables, SSO enforcement, and member governance
- Add CheckReportVercel to core SDK models and finding output mapping
- Include 5 compliance frameworks: CIS Controls v8, ISO 27001, NIST 800-53, PCI DSS 4.0, SOC 2
- Add unit tests for provider, mutelist, and representative checks per service
 2026-02-27 11:52:57 +01:00
Adrián Peña
8ee4a9e3fc fix(sdk): scope scan_id by provider and account (#10184) 2026-02-26 19:19:29 +01:00
Adrián Peña
336cbe1844 feat(ingestions): allow multiple scan_ids and providers inside the ocsf (#10182) 2026-02-26 17:56:21 +01:00
Andoni Alonso
c8ce590039 feat(m365): add entra_default_app_management_policy_enabled security check (#9898) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-26 16:14:29 +01:00
Andoni Alonso
df09b14c75 feat(m365): add entra_all_apps_conditional_access_coverage security check (#9902) 
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
 2026-02-26 11:37:09 +01:00
Pedro Martín
fac089ab78 feat(compliance): add SecNumCloud for AWS (#10117) 2026-02-26 09:31:19 +01:00
Hugo Pereira Brito
db1db7d366 feat(m365): add entra_require_mfa_for_management_api security check (#10150) 
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
 2026-02-25 12:29:23 +01:00
lydiavilchez
9ee8072572 feat(googleworkspace): add Google Workspace provider with directory service and super admin check (#10022) 2026-02-25 12:17:13 +01:00
Hugo Pereira Brito
6935c4eb1b feat(m365): add entra_app_enforced_restrictions security check (#10058) 2026-02-25 11:53:35 +01:00
Pepe Fagoaga
6962622fd2 fix(aws): filter VPC endpoint services by audited account to prevent AccessDenied errors (#10152) 
Co-authored-by: Copilot <198982749+Copilot@users.noreply.github.com>
Co-authored-by: jfagoagas <16007882+jfagoagas@users.noreply.github.com>
 2026-02-24 18:30:31 +01:00