ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 14:55:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore(Security Hub): add status extended to Security Hub (#1921)

Browse Source
This commit is contained in:
Sergio Garcia
2023-02-21 15:11:43 +01:00
committed by GitHub
parent 813f3e7d42
commit ce3ef0550f
4 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
prowler/lib/outputs/json.py
View File

@@ -31,7 +31,7 @@ def fill_json_asff(finding_output, audit_info, finding):
) = finding_output.CreatedAt = timestamp_utc.strftime("%Y-%m-%dT%H:%M:%SZ") ) = finding_output.CreatedAt = timestamp_utc.strftime("%Y-%m-%dT%H:%M:%SZ")
finding_output.Severity = Severity(Label=finding.check_metadata.Severity.upper()) finding_output.Severity = Severity(Label=finding.check_metadata.Severity.upper())
finding_output.Title = finding.check_metadata.CheckTitle finding_output.Title = finding.check_metadata.CheckTitle
finding_output.Description = finding.check_metadata.Description finding_output.Description = finding.status_extended
finding_output.Resources = [ finding_output.Resources = [
Resource( Resource(
Id=finding.resource_arn, Id=finding.resource_arn,

2
prowler/providers/aws/services/vpc/vpc_endpoint_services_allowed_principals_trust_boundaries/vpc_endpoint_services_allowed_principals_trust_boundaries.metadata.json
View File

@@ -9,7 +9,7 @@
"SubServiceName": "service_endpoint", "SubServiceName": "service_endpoint",
"ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id", "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
"Severity": "medium", "Severity": "medium",
"ResourceType": "AwsEc2Vpc", "ResourceType": "AwsEc2VpcEndpointService",
"Description": "Find trust boundaries in VPC endpoint services allowlisted principles.", "Description": "Find trust boundaries in VPC endpoint services allowlisted principles.",
"Risk": "Account VPC could be linked to other accounts.", "Risk": "Account VPC could be linked to other accounts.",
"RelatedUrl": "", "RelatedUrl": "",

2
prowler/providers/aws/services/vpc/vpc_peering_routing_tables_with_least_privilege/vpc_peering_routing_tables_with_least_privilege.metadata.json
View File

@@ -9,7 +9,7 @@
"SubServiceName": "route_table", "SubServiceName": "route_table",
"ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id", "ResourceIdTemplate": "arn:partition:service:region:account-id:resource-id",
"Severity": "medium", "Severity": "medium",
"ResourceType": "AwsEc2Vpc", "ResourceType": "AwsEc2VpcPeeringConnection",
"Description": "Ensure routing tables for VPC peering are least access.", "Description": "Ensure routing tables for VPC peering are least access.",
"Risk": "Being highly selective in peering routing tables is a very effective way of minimizing the impact of breach as resources outside of these routes are inaccessible to the peered VPC.", "Risk": "Being highly selective in peering routing tables is a very effective way of minimizing the impact of breach as resources outside of these routes are inaccessible to the peered VPC.",
"RelatedUrl": "", "RelatedUrl": "",

2
tests/lib/outputs/outputs_test.py
View File

@@ -291,7 +291,7 @@ class Test_Outputs:
) = expected.CreatedAt = timestamp_utc.strftime("%Y-%m-%dT%H:%M:%SZ") ) = expected.CreatedAt = timestamp_utc.strftime("%Y-%m-%dT%H:%M:%SZ")
expected.Severity = Severity(Label=finding.check_metadata.Severity.upper()) expected.Severity = Severity(Label=finding.check_metadata.Severity.upper())
expected.Title = finding.check_metadata.CheckTitle expected.Title = finding.check_metadata.CheckTitle
expected.Description = finding.check_metadata.Description expected.Description = finding.status_extended
expected.Resources = [ expected.Resources = [
Resource( Resource(
Id="test-arn", Id="test-arn",