Commit Graph

  • 7a7c828fc7 feat(m365/entra): add entra_app_registration_client_secret_unused check (consolidates #11097 and #11212) (#11232) Hugo Pereira Brito 2026-05-19 15:14:32 +01:00
  • 5cbe473eb9 chore(stepsecurity): add missing endpoints (#11223) Pedro Martín 2026-05-19 16:07:33 +02:00
  • caf2f61563 docs: update security section with latest changes (#11231) Pepe Fagoaga 2026-05-19 16:03:58 +02:00
  • 9dc4deccb6 feat(gcp): add cloudsql_instance_cmek_encryption_enabled check (#11023) s1ns3nz0 2026-05-19 22:52:16 +09:00
  • 706742e6dc chore(release): Bump versions to v5.27.1 (#11226) Prowler Bot 2026-05-19 15:11:49 +02:00
  • 476e7d1010 chore(release): Bump versions to v5.28.0 (#11227) Prowler Bot 2026-05-19 15:11:44 +02:00
  • 7856e7d6cd feat(okta): scan every policy Daniel Barranquero 2026-05-19 13:54:05 +02:00
  • 1ce6458c6e chore: revision Daniel Barranquero 2026-05-19 13:15:27 +02:00
  • 427e8e1600 feat(sdk): add signon_dod_warning_banner_configured Okta check Daniel Barranquero 2026-05-19 12:58:24 +02:00
  • 327a601a67 feat(sdk): add signon_global_session_policy_network_zone_enforced Okta check Daniel Barranquero 2026-05-19 12:58:09 +02:00
  • 6187585919 feat(sdk): add signon_global_session_cookies_not_persistent Okta check Daniel Barranquero 2026-05-19 12:58:02 +02:00
  • 42b19038e0 feat(sdk): add signon_global_session_lifetime_18h Okta check Daniel Barranquero 2026-05-19 12:57:55 +02:00
  • c73231ec95 refactor(sdk): extract shared signon test fixtures Daniel Barranquero 2026-05-19 12:57:47 +02:00
  • baaf56ea5e chore(api): Update prowler dependency to v5.27 for release 5.27.0 (#11219) 5.27.0 Prowler Bot 2026-05-19 12:17:44 +02:00
  • a9e0086b5a docs(changelog): add signon_dod_warning_banner_configured entry feat/prowler-1511-signon-dod-warning-banner-configured Daniel Barranquero 2026-05-19 12:02:00 +02:00
  • b34b11482a feat(okta): add signon_dod_warning_banner_configured security check Daniel Barranquero 2026-05-19 12:01:16 +02:00
  • cb01769237 chore(changelog): prepare for v5.27.0 (#11218) Pepe Fagoaga 2026-05-19 11:42:10 +02:00
  • 4c802620c4 chore(readme): update table Prowler at a Glance (#11216) Pedro Martín 2026-05-19 11:19:49 +02:00
  • 4fa8d5465e refactor(mcp): align /health with IETF health-check format (#11207) Adrián Peña 2026-05-19 09:51:32 +02:00
  • 31b9619627 fix(ui): improve attack paths node labels (#11197) Alan Buscaglia 2026-05-19 09:32:16 +02:00
  • d4a1bc10e9 docs(skills): require changelog confirmation (#11209) Alan Buscaglia 2026-05-19 09:25:45 +02:00
  • a1848747a3 refactor(ui): align /api/health with IETF health-check format (#11206) Adrián Peña 2026-05-19 09:19:34 +02:00
  • 4c0a3f477f chore(ci): consolidate sdk/api/ui/docs bump workflows into single bump-version.yml (#11208) César Arroba 2026-05-18 18:29:17 +02:00
  • bc443eef22 chore(ci): drop views.py version bump/verify steps in favor of pyproject.toml-derived RELEASE_ID (#11205) César Arroba 2026-05-18 17:38:57 +02:00
  • 298ad3382f chore(ui): make View Resource an icon-only link next to the resource name (#11193) Hugo Pereira Brito 2026-05-18 15:48:24 +01:00
  • bfcbe0a9c4 feat(scaleway): add new provider (#11166) Pedro Martín 2026-05-18 16:42:10 +02:00
  • 37aa290d1c feat(api): add health/live and health/ready probe endpoints (#11200) Adrián Peña 2026-05-18 16:28:36 +02:00
  • 5cd7fe4f96 revert(ci): drop views.py version bump/verify steps in favor of pyproject.toml-derived RELEASE_ID (#11202) César Arroba 2026-05-18 15:59:52 +02:00
  • 98932c19e1 Merge remote-tracking branch 'origin/master' into tmp-1454-merge PROWLER-1454-findings-groups-update-table-immediately-after-muting-a-group Hugo P.Brito 2026-05-18 14:50:44 +01:00
  • 0234f038f0 chore(ci): drop views.py version bump/verify steps in favor of pyproject.toml-derived RELEASE_ID (#11201) César Arroba 2026-05-18 15:44:21 +02:00
  • ef69a347b1 docs(ui): add changelog entry for drawer mobile scroll fix (#11199) fix-drawer-mobile-horizontal-scroll Hugo P.Brito 2026-05-18 13:59:45 +01:00
  • e691176612 fix(ui): contain finding drawer horizontal scroll to the tab bar on mobile Hugo P.Brito 2026-05-18 13:57:26 +01:00
  • 5ca6e31f45 fix(vercel): exclude API token from serialization and repr (#11198) Pedro Martín 2026-05-18 14:30:44 +02:00
  • 21df5c58b1 fix(ui): preserve scans provider wizard flow Alan Buscaglia 2026-05-18 13:34:32 +02:00
  • 964548a677 fix(googleworkspace): add API filter to Drive and Calendar services to prevent rate limiting (#11195) lydiavilchez 2026-05-18 12:57:22 +02:00
  • a2c901fd96 feat(aws): update regions for AWS services aws-regions-update-186 prowler-bot 2026-05-18 10:26:03 +00:00
  • 5d34577b0b feat(reporting): bound PDF compliance report memory and CPU (#11160) Pedro Martín 2026-05-18 11:46:26 +02:00
  • 855e74add0 chore(deps): fix osv-scanner from API (#11192) Pedro Martín 2026-05-18 10:20:43 +02:00
  • 40b7cb3991 fix(api): skip scan tasks when provider was deleted (#11185) Adrián Peña 2026-05-15 13:48:02 +02:00
  • c1cfda530f docs(powerbi): add new documentation + update .pbit (#11177) Pedro Martín 2026-05-15 09:58:46 +02:00
  • 9894ac7bc3 feat(googleworkspace): implement Chat service with 6 CIS checks (#11126) lydiavilchez 2026-05-14 17:19:11 +02:00
  • 8ae076f22c fix(gcp): update duplicated CIS requirement ID (#11180) Pedro Martín 2026-05-14 16:17:04 +02:00
  • 27fb8518cd chore(sdk): pin root transitive deps to prevent silent drift (#11178) Adrián Peña 2026-05-14 16:14:34 +02:00
  • 375de5dc87 docs: replace safety for osv-scanner (#11179) Pepe Fagoaga 2026-05-14 15:04:09 +02:00
  • 3410fc927a chore(security): replace safety with osv-scanner (#11167) Pepe Fagoaga 2026-05-14 14:35:09 +02:00
  • dcf91ef252 feat(ui): add health check endpoint (#11145) Alejandro Bailo 2026-05-14 13:47:48 +02:00
  • bf4fd8fabd fix(googleworkspace): use per-service resources for Directory (#11176) lydiavilchez 2026-05-14 13:07:06 +02:00
  • 3d65208fd3 fix(ui): update vulnerable npm packages (#11173) Alejandro Bailo 2026-05-14 12:55:29 +02:00
  • 7d3ed62e90 chore(sdk): migrate from poetry to uv (#11162) Adrián Peña 2026-05-14 12:51:57 +02:00
  • 5f92989492 fix(googleworkspace): use per-service resources for Calendar and Drive (#11161) lydiavilchez 2026-05-14 12:43:29 +02:00
  • 6befa78978 fix(cloudflare): plan-aware WAF FAIL hints for zones (#9896) Hugo Pereira Brito 2026-05-14 11:27:47 +01:00
  • ea8299c6b5 Merge branch 'master' into PROWLER-1454-findings-groups-update-table-immediately-after-muting-a-group Hugo Pereira Brito 2026-05-14 11:07:39 +01:00
  • 78af0c24fe fix(googleworkspace): use per-service resources for Gmail (#11169) lydiavilchez 2026-05-14 12:01:07 +02:00
  • 1bb547e5e1 docs(cloudflare): add pre-configured token creation links (#11156) Andoni Alonso 2026-05-14 11:58:00 +02:00
  • 658e475636 docs(ui): add changelog entry for PROWLER-1454 fix Hugo P.Brito 2026-05-14 10:52:13 +01:00
  • 8ddb784259 fix(ui): hide muted finding groups immediately with TTL persistence Hugo P.Brito 2026-05-14 10:48:04 +01:00
  • 1f39b01fb2 feat(sagemaker): add sagemaker_domain_sso_configured check (#11094) June 2026-05-14 02:42:30 -07:00
  • fb0ef391f2 ci(api): replace poetry with uv (api) (#10775) AOrps 2026-05-14 10:17:17 +01:00
  • f2e6a3264d chore(ui): scope prek pre-commit to staged files, drop legacy husky (#11118) Pablo Fernandez Guerra (PFE) 2026-05-14 11:12:25 +02:00
  • 9bd4e4b65c fix(ui): enforce 100-char limit on mute rule name input (#11158) Hugo Pereira Brito 2026-05-14 09:13:36 +01:00
  • 68ffb2b219 docs(sdk): update Scanning Unused Services tutorial (#11151) Hugo Pereira Brito 2026-05-14 08:26:29 +01:00
  • 739be07077 chore(aws): skip unattached IAM policies unless --scan-unused-services (#11150) Hugo Pereira Brito 2026-05-14 08:10:20 +01:00
  • 0abbb7fc59 feat(mcp): add finding groups tools (#11140) Alejandro Bailo 2026-05-13 18:11:32 +02:00
  • 0b4393776c chore: harden npm supply chain controls (#11157) Alan Buscaglia 2026-05-13 17:30:25 +02:00
  • 8bc2dd71b2 fix(sdk): make okta SDK an optional extra to avoid downstream resolution conflicts fix/okta-optional-extra Adrián Jesús Peña Rodríguez 2026-05-13 16:53:13 +02:00
  • 4dd5baadf6 feat(okta): add provider to the SDK with 1 security check (#11079) Daniel Barranquero 2026-05-13 15:57:57 +02:00
  • 934d995661 test(ui): fix flaky attack paths test (#11154) Pablo Fernandez Guerra (PFE) 2026-05-13 15:05:18 +02:00
  • 4ec493ec5c fix(api): correct service principal for Bedrock AgentCore attack paths (#11152) v5.26 Prowler Bot 2026-05-13 12:41:10 +02:00
  • 85c1b85852 fix(ui): render inline code without literal backticks in finding drawer (#11155) Prowler Bot 2026-05-13 11:47:13 +02:00
  • ccdc01ed7b fix(ui): render inline code without literal backticks in finding drawer (#11142) Hugo Pereira Brito 2026-05-13 10:31:48 +01:00
  • d84099e87a feat(aws): add external resource link to AWS Console (#9172) Andoni Alonso 2026-05-13 11:16:28 +02:00
  • cf55f7eb43 style(sdk): apply black formatting to contrib/inventory-graph (#11153) Hugo Pereira Brito 2026-05-13 09:52:46 +01:00
  • 9293c7b58d fix(api): correct service principal for Bedrock AgentCore attack paths (#11141) Rubén De la Torre Vico 2026-05-13 10:14:59 +02:00
  • a883bb30d4 chore: SAML ACS URL is only shown if the email domain is configured (#11144) Pepe Fagoaga 2026-05-13 09:38:19 +02:00
  • e476bbde2d feat(outputs): add AWS inventory connectivity graph output format (#10382) Sandiyo Christan 2026-05-13 12:52:37 +05:30
  • 1a450aaa70 feat(config): add SDK config's validator Pepe Fagoaga 2026-05-13 08:04:13 +02:00
  • 8f50c6d684 fix(m365): surface AuditLog.Read.All permission errors instead of false positives (#11146) Prowler Bot 2026-05-12 19:42:21 +02:00
  • 7f3dcdf02f fix(m365): surface AuditLog.Read.All permission errors instead of false positives (#10907) abdou 2026-05-12 19:22:19 +02:00
  • 132e79df89 chore(skills): update Next.js guidance to version 16 (#11143) Alejandro Bailo 2026-05-12 19:05:13 +02:00
  • b2ed9ee221 refactor: clean tests and improve selector (#11139) Alejandro Bailo 2026-05-12 17:21:50 +02:00
  • def2d3d188 chore(skills): forbid /issues/ links in changelog entries (#11121) Hugo Pereira Brito 2026-05-12 16:08:01 +01:00
  • 1090ed59b7 feat(ui): replace D3+Dagre attack path graph with React Flow (#10686) Pablo Fernandez Guerra (PFE) 2026-05-12 16:33:29 +02:00
  • 67e4b1a082 docs(skills): clarify changelog release preflight (#11137) Alan Buscaglia 2026-05-12 16:06:19 +02:00
  • 1fb6c6a0f0 chore(api): Bump version to v1.27.2 (#11135) Prowler Bot 2026-05-12 15:08:06 +02:00
  • fc3a25d7a8 chore(sdk): Bump version to v5.26.2 (#11133) Prowler Bot 2026-05-12 15:07:49 +02:00
  • 1a56087ea0 chore(ui): Bump version to v5.26.2 (#11134) Prowler Bot 2026-05-12 15:07:33 +02:00
  • 7478ec9420 chore(docs): Bump version to v5.26.1 (#11132) Prowler Bot 2026-05-12 15:07:19 +02:00
  • a30b6623ed fix(api): make findings GIN index migration idempotent (#11129) Josema Camacho 2026-05-12 13:47:08 +02:00
  • 2fdc480beb fix(ui): fix role cancel and select dropdown scroll (#11128) 5.26.1 Prowler Bot 2026-05-12 13:21:18 +02:00
  • 8bfc1d85f5 chore(changelog): prepare changelog for v5.26.1 (#11130) Prowler Bot 2026-05-12 13:18:44 +02:00
  • 15bc317ec4 chore(changelog): prepare changelog for v5.26.1 (#11127) Daniel Barranquero 2026-05-12 13:14:41 +02:00
  • 1536102784 fix(ui): fix role cancel and select dropdown scroll (#11125) Alejandro Bailo 2026-05-12 13:10:56 +02:00
  • a8a0f134b0 Merge branch 'v5.26' into backport/v5.26/pr-11001 backport/v5.26/pr-11001 Josema Camacho 2026-05-12 13:09:03 +02:00
  • 57501e1864 fix(api): defer scan broker publish until transaction commits (#11123) Prowler Bot 2026-05-12 12:12:40 +02:00
  • b606a614fe Merging v5.26 into backport/v5.26/pr-11001 Josema Camacho 2026-05-12 11:51:35 +02:00
  • 9272b654dc perf(api): add multi-column GIN index on findings array fields (#11001) Josema Camacho 2026-05-12 11:45:16 +02:00
  • 1b99550572 feat(m365): add entra_service_principal_no_secrets_for_permanent_tier0_roles security check (#10788) Hugo Pereira Brito 2026-05-12 10:45:32 +01:00
  • 6dfa135755 perf(api): add multi-column GIN index on findings array fields (#11001) Josema Camacho 2026-05-12 11:45:16 +02:00
  • 80482da1cb refactor(m365): scope entra_emergency_access_exclusion to Block-grant policies (#10849) Hugo Pereira Brito 2026-05-12 10:40:46 +01:00
  • 9cedbd3582 fix(api): defer scan broker publish until transaction commits (#11122) Adrián Peña 2026-05-12 11:04:39 +02:00