feat(aws): Add MFA flag if try to assume role in AWS (#2478)

Co-authored-by: Pepe Fagoaga <pepe@verica.io> Co-authored-by: Sergio Garcia <sergargar1@gmail.com>
2026-02-10 14:55:00 +00:00 · 2023-06-13 18:18:10 +03:00
parent 561459d93b
commit 707584b2ef
245 changed files with 470 additions and 25 deletions
--- a/tests/lib/check/check_test.py
+++ b/tests/lib/check/check_test.py
@@ -157,6 +157,7 @@ class Test_Check:
            audited_regions=None,
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        return audit_info

--- a/tests/lib/cli/parser_test.py
+++ b/tests/lib/cli/parser_test.py
@@ -677,6 +677,12 @@ class Test_Parser:
        parsed = self.parser.parse(command)
        assert parsed.role == role

+    def test_aws_parser_mfa(self):
+        argument = "--mfa"
+        command = [prowler_command, argument]
+        parsed = self.parser.parse(command)
+        assert parsed.mfa
+
    def test_aws_parser_session_duration_short(self):
        argument = "-T"
        duration = "900"
--- a/tests/lib/outputs/outputs_test.py
+++ b/tests/lib/outputs/outputs_test.py
@@ -94,6 +94,7 @@ class Test_Outputs:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        test_output_modes = [
            ["csv"],
@@ -413,6 +414,7 @@ class Test_Outputs:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        finding = Check_Report(
            load_check_metadata(
@@ -489,6 +491,7 @@ class Test_Outputs:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        # Creat mock bucket
        bucket_name = "test_bucket"
@@ -539,6 +542,7 @@ class Test_Outputs:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        # Creat mock bucket
        bucket_name = "test_bucket"
@@ -596,6 +600,7 @@ class Test_Outputs:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        # Creat mock bucket
        bucket_name = "test_bucket"
@@ -704,6 +709,7 @@ class Test_Outputs:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        finding = Check_Report(
            load_check_metadata(
--- a/tests/lib/outputs/slack_test.py
+++ b/tests/lib/outputs/slack_test.py
@@ -43,6 +43,7 @@ class Test_Slack_Integration:
            audited_regions=["eu-west-2", "eu-west-1"],
            organizations_metadata=None,
            audit_resources=None,
+            mfa_enabled=False,
        )
        gcp_audit_info = GCP_Audit_Info(
            credentials=None,