feat(checks_loader): check for none check_list

feat(checks_loader): discard cloudwatch_log_group_no_secrets_in_logs and cloudwatch_log_group_no_critical_pii_in_logs
2026-03-31 21:27:28 +00:00 · 2024-11-11 11:21:53 +01:00 · 2024-11-08 13:25:25 +01:00
1 changed files with 14 additions and 0 deletions
--- a/prowler/lib/check/checks_loader.py
+++ b/prowler/lib/check/checks_loader.py
@@ -115,6 +115,20 @@ def load_checks_to_execute(
            for threat_detection_check in check_categories.get("threat-detection", []):
                checks_to_execute.discard(threat_detection_check)

+        # Exclude check cloudwatch_log_group_no_secrets_in_logs from the checks to execute if not in check_list
+        if (
+            check_list
+            and "cloudwatch_log_group_no_secrets_in_logs" not in check_list
+            and "cloudwatch_log_group_no_secrets_in_logs" in checks_to_execute
+        ):
+            checks_to_execute.remove("cloudwatch_log_group_no_secrets_in_logs")
+        # Exclude check cloudwatch_log_group_no_critical_pii_in_logs from the checks to execute if not in check_list
+        if (
+            check_list
+            and "cloudwatch_log_group_no_critical_pii_in_logs" not in check_list
+            and "cloudwatch_log_group_no_critical_pii_in_logs" in checks_to_execute
+        ):
+            checks_to_execute.remove("cloudwatch_log_group_no_critical_pii_in_logs")
        # Check Aliases
        checks_to_execute = update_checks_to_execute_with_aliases(
            checks_to_execute, check_aliases
Author	SHA1	Message	Date
pedrooot	aa69563fc2	feat(checks_loader): check for none check_list	2024-11-11 11:21:53 +01:00
pedrooot	ef4750856c	feat(checks_loader): discard cloudwatch_log_group_no_secrets_in_logs and cloudwatch_log_group_no_critical_pii_in_logs	2024-11-08 13:25:25 +01:00