fix(dataevents checks): add trails home region (#2484)

2026-02-10 06:45:08 +00:00 · 2023-06-13 11:48:55 +02:00
parent 25e48ae546
commit 561459d93b
2 changed files with 4 additions and 4 deletions
--- a/prowler/providers/aws/services/cloudtrail/cloudtrail_s3_dataevents_read_enabled/cloudtrail_s3_dataevents_read_enabled.py
+++ b/prowler/providers/aws/services/cloudtrail/cloudtrail_s3_dataevents_read_enabled/cloudtrail_s3_dataevents_read_enabled.py
@@ -34,7 +34,7 @@ class cloudtrail_s3_dataevents_read_enabled(Check):
                                report.resource_arn = trail.arn
                                report.resource_tags = trail.tags
                                report.status = "PASS"
-                                report.status_extended = f"Trail {trail.name} has a classic data event selector to record all S3 object-level API operations."
+                                report.status_extended = f"Trail {trail.name} from home region {trail.home_region} has a classic data event selector to record all S3 object-level API operations."
                # advanced event selectors
                elif data_event.is_advanced:
                    for field_selector in data_event.event_selector["FieldSelectors"]:
@@ -47,7 +47,7 @@ class cloudtrail_s3_dataevents_read_enabled(Check):
                            report.resource_arn = trail.arn
                            report.resource_tags = trail.tags
                            report.status = "PASS"
-                            report.status_extended = f"Trail {trail.name} has an advanced data event selector to record all S3 object-level API operations."
+                            report.status_extended = f"Trail {trail.name} from home region {trail.home_region} has an advanced data event selector to record all S3 object-level API operations."

        findings.append(report)
        return findings
--- a/prowler/providers/aws/services/cloudtrail/cloudtrail_s3_dataevents_write_enabled/cloudtrail_s3_dataevents_write_enabled.py
+++ b/prowler/providers/aws/services/cloudtrail/cloudtrail_s3_dataevents_write_enabled/cloudtrail_s3_dataevents_write_enabled.py
@@ -34,7 +34,7 @@ class cloudtrail_s3_dataevents_write_enabled(Check):
                                report.resource_arn = trail.arn
                                report.resource_tags = trail.tags
                                report.status = "PASS"
-                                report.status_extended = f"Trail {trail.name} has a classic data event selector to record all S3 object-level API operations."
+                                report.status_extended = f"Trail {trail.name} from home region {trail.home_region} has a classic data event selector to record all S3 object-level API operations."
                # advanced event selectors
                elif data_event.is_advanced:
                    for field_selector in data_event.event_selector["FieldSelectors"]:
@@ -47,6 +47,6 @@ class cloudtrail_s3_dataevents_write_enabled(Check):
                            report.resource_arn = trail.arn
                            report.resource_tags = trail.tags
                            report.status = "PASS"
-                            report.status_extended = f"Trail {trail.name} has an advanced data event selector to record all S3 object-level API operations."
+                            report.status_extended = f"Trail {trail.name} from home region {trail.home_region} has an advanced data event selector to record all S3 object-level API operations."
        findings.append(report)
        return findings