ben.carrasco/prowler
1
0
Fork 0
mirror of https://github.com/prowler-cloud/prowler.git synced 2026-03-22 03:08:23 +00:00
Code Issues Packages Projects Releases Wiki Activity
7,604 Commits 384 Branches 179 Tags
e1f70321c871052476436e20c62c3fd3c3dcf3a3
Commit Graph

387 Commits

Author SHA1 Message Date
Prowler Bot
e1f70321c8 chore(api): Update prowler dependency to v5.18 for release 5.18.0 (#9963) 
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
 2026-02-05 14:06:12 +01:00
Josema Camacho
4ebded6ab1 chore(attack-paths): A Neo4j database per tenant (#9955) 2026-02-05 10:29:37 +01:00
Josema Camacho
ab18ddb81a chore(api): prepare changelog for 5.18.0 release (#9960) 2026-02-05 09:34:54 +01:00
Josema Camacho
658ae755ae chore(attack-paths): pin cartography to 0.126.1 (#9893) 
Co-authored-by: César Arroba <cesar@prowler.com>
 2026-02-04 19:20:15 +01:00
Víctor Fernández Poyatos
e1900fc776 fix(api): bump outdated versions (#9950) 2026-02-03 11:03:11 +01:00
Víctor Fernández Poyatos
3c0cb3cd58 chore: update poetry lock for SDK and API (#9941) 2026-02-03 09:44:02 +01:00
Hugo Pereira Brito
b1f9971617 feat(api): add Cloudflare provider support (#9907) 2026-02-02 14:08:33 +01:00
Alejandro Bailo
0c5778d4a1 feat: resource view re-styling with new components (#9864) 2026-01-28 14:07:01 +01:00
Víctor Fernández Poyatos
c77d9dd3a9 fix(api): enable autocommit for concurrent index migrations (#9905) 2026-01-28 13:26:16 +01:00
Víctor Fernández Poyatos
8783e963d3 feat(api): remove unused database indexes and improve new failed findings index (#9904) 2026-01-28 12:35:36 +01:00
dependabot[bot]
ac32f03de3 build(deps): bump azure-core from 1.35.0 to 1.38.0 in /api (#9790) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-27 17:17:33 +01:00
Pepe Fagoaga
b2c18b69ee fix(api): handle AccessDenied during AssumeRole in events endpoint (#9899) 2026-01-27 15:32:51 +01:00
Andoni Alonso
727fafb147 fix(attack-paths): correct aws-security-groups-open-internet-facing query (#9892) 2026-01-27 14:20:05 +01:00
Sergio Garcia
9e7ecb39fa feat(aws): CloudTrail timeline for findings (#9101) 
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-27 13:00:46 +01:00
Pedro Martín
dce406b39b feat(report): improve the way of reporting and adding reports (#9444) 2026-01-27 11:40:36 +01:00
Andoni Alonso
28c36cc5fc feat(attack-paths): add Bedrock and AttachRolePolicy privilege escalation queries (#9885) 2026-01-27 09:35:48 +01:00
Víctor Fernández Poyatos
35f263dea6 fix(scans): scheduled scans duplicates (#9829) 2026-01-26 13:20:48 +01:00
Josema Camacho
a1637ec46b fix(attack-paths): clear Neo4j database cache after scan and queries (#9877) 2026-01-23 16:06:10 +01:00
Josema Camacho
cb5c9ea1c5 fix(attack-paths): improve findings ingestion cypher query (#9874) 2026-01-23 13:28:38 +01:00
Josema Camacho
cb367da97d fix(attack-paths): Start Neo4j at startup for API only (#9872) 
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-23 10:52:22 +01:00
Adrián Peña
be2a58dc82 refactor(api): lazy load providers and compliance (#9857) 2026-01-23 10:14:35 +01:00
Pepe Fagoaga
29133f2d7e fix(neo4j): lazy load driver (#9868) 
Co-authored-by: Josema Camacho <josema@prowler.com>
 2026-01-23 06:36:47 +01:00
Pepe Fagoaga
babf18ffea fix(attack-paths): Use Findings.all_objects to avoid the custom manager (#9869) 2026-01-23 06:17:57 +01:00
Pepe Fagoaga
91e3c01f51 fix(attack-paths): load findings in batches into Neo4j (#9862) 
Co-authored-by: Josema Camacho <josema@prowler.com>
 2026-01-22 18:17:50 +01:00
Josema Camacho
7dfafb9337 fix(attack-paths): read findings using replica DB and add more logs (#9861) 2026-01-22 14:51:22 +01:00
Pepe Fagoaga
dce05295ef chore(skills): Improve Django and DRF skills (#9831) 
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
 2026-01-22 13:54:06 +01:00
Josema Camacho
03d4c19ed5 fix: remove None databases name for removing provider Neo4j databases (#9858) 2026-01-22 13:45:35 +01:00
Josema Camacho
799826758e fix: improve API startup process manage.py detection (#9856) 2026-01-22 12:34:18 +01:00
Prowler Bot
1208005a94 chore(api): Bump version to v1.19.0 (#9853) 
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
 2026-01-22 11:33:24 +01:00
César Arroba
9ffa0043ab chore: add release version to changelogs (#9846) 2026-01-21 15:19:31 +01:00
Pepe Fagoaga
f11f71bc42 chore(changelog): make all consistent and product-focused (#9808) 2026-01-21 13:36:36 +01:00
Josema Camacho
9c76dafaa4 chore(attack-paths): adding stability to Neo4j driver and session (#9842) 2026-01-21 12:44:31 +01:00
Josema Camacho
d1a7eed5fa chore(security): update filelock dep to solve vulnerability 82754 (#9816) 2026-01-20 13:26:59 +01:00
César Arroba
5be4ec511f fix(api): handle Neo4j unavailability during app initialization (#9827) 
Co-authored-by: Josema Camacho <josema@prowler.com>
 2026-01-20 12:22:41 +01:00
dependabot[bot]
a0166aede7 build(deps): bump django-allauth from 65.11.0 to 65.13.0 in /api (#9575) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
 2026-01-20 11:54:21 +01:00
dependabot[bot]
d0b0c66ef0 build(deps): bump pyasn1 from 0.6.1 to 0.6.2 in /api (#9818) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-19 15:03:08 +01:00
Josema Camacho
032499c29a feat(attack-paths): The complete Attack Paths feature (#9805) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: César Arroba <19954079+cesararroba@users.noreply.github.com>
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
Co-authored-by: Claude <noreply@anthropic.com>
Co-authored-by: Andoni Alonso <14891798+andoniaf@users.noreply.github.com>
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com>
Co-authored-by: HugoPBrito <hugopbrit@gmail.com>
Co-authored-by: Hugo Pereira Brito <101209179+HugoPBrito@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
Co-authored-by: Chandrapal Badshah <Chan9390@users.noreply.github.com>
Co-authored-by: Chandrapal Badshah <12944530+Chan9390@users.noreply.github.com>
Co-authored-by: Adrián Peña <adrianjpr@gmail.com>
Co-authored-by: Pedro Martín <pedromarting3@gmail.com>
Co-authored-by: KonstGolfi <73020281+KonstGolfi@users.noreply.github.com>
Co-authored-by: lydiavilchez <114735608+lydiavilchez@users.noreply.github.com>
Co-authored-by: Prowler Bot <bot@prowler.com>
Co-authored-by: prowler-bot <179230569+prowler-bot@users.noreply.github.com>
Co-authored-by: StylusFrost <43682773+StylusFrost@users.noreply.github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: alejandrobailo <alejandrobailo94@gmail.com>
Co-authored-by: Alejandro Bailo <59607668+alejandrobailo@users.noreply.github.com>
Co-authored-by: Víctor Fernández Poyatos <victor@prowler.com>
Co-authored-by: bota4go <108249054+bota4go@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com>
Co-authored-by: Daniel Barranquero <danielbo2001@gmail.com>
Co-authored-by: mchennai <50082780+mchennai@users.noreply.github.com>
Co-authored-by: Ryan Nolette <sonofagl1tch@users.noreply.github.com>
Co-authored-by: Ulissis Correa <123517149+ulissisc@users.noreply.github.com>
Co-authored-by: Sergio Garcia <hello@mistercloudsec.com>
Co-authored-by: Lee Trout <ltrout@watchpointlabs.com>
Co-authored-by: Sergio Garcia <sergargar1@gmail.com>
Co-authored-by: Alan-TheGentleman <alan@thegentleman.dev>
 2026-01-16 13:37:09 +01:00
Pepe Fagoaga
d7af97b30a chore(skills): add Prowler Changelog skill (#9806) 2026-01-16 13:31:34 +01:00
Adrián Peña
d8c1273a57 feat(api): add resource group overview endpoint and filtering (#9694) 
Co-authored-by: Alan Buscaglia <gentlemanprogramming@gmail.com>
Co-authored-by: Víctor Fernández Poyatos <victor@prowler.com>
 2026-01-15 13:05:25 +01:00
Alan Buscaglia
c8fab497fd feat(skills): sync AGENTS.md to AI-specific formats (#9751) 
Co-authored-by: Alan-TheGentleman <alan@thegentleman.dev>
Co-authored-by: pedrooot <pedromarting3@gmail.com>
Co-authored-by: Andoni A. <14891798+andoniaf@users.noreply.github.com>
 2026-01-13 11:44:44 +01:00
Alejandro Bailo
d38be934a3 feat(ui): add new findings table (#9699) 2026-01-12 15:44:25 +01:00
Víctor Fernández Poyatos
5f2cb614ad feat(overviews): Compliance watchlist endpoint (#9596) 
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
 2026-01-12 11:40:36 +01:00
Alan Buscaglia
7f2fa275c6 feat: add AI skills pack for Claude Code and OpenCode (#9728) 
Co-authored-by: Rubén De la Torre Vico <ruben@prowler.com>
Co-authored-by: Adrián Jesús Peña Rodríguez <adrianjpr@gmail.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-09 15:01:18 +01:00
dependabot[bot]
68684b107a build(deps-dev): bump authlib from 1.6.5 to 1.6.6 in /api (#9742) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-09 08:25:25 +01:00
dependabot[bot]
d04716ea95 build(deps): bump werkzeug from 3.1.4 to 3.1.5 in /api (#9743) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-09 08:23:58 +01:00
dependabot[bot]
fa2deef241 build(deps): bump aiohttp from 3.12.15 to 3.13.3 in /api (#9723) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Pepe Fagoaga <pepe@prowler.com>
 2026-01-08 14:12:54 +01:00
dependabot[bot]
211639d849 build(deps-dev): bump marshmallow from 3.26.1 to 3.26.2 in /api (#9651) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-08 13:52:58 +01:00
dependabot[bot]
25c90f9f63 build(deps): bump urllib3 from 2.5.0 to 2.6.3 in /api (#9735) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-08 13:45:58 +01:00
dependabot[bot]
6e2ba66a5a build(deps): bump pynacl from 1.5.0 to 1.6.2 in /api (#9739) 
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2026-01-08 13:44:13 +01:00
Adrián Peña
df8d82345d fix(api): update dependencies to patch security vulnerabilities (#9730) 2026-01-07 18:10:58 +01:00