From d8e45d5c3f3ec1eb92d302dd91e075691007f9fc Mon Sep 17 00:00:00 2001 From: Pepe Fagoaga Date: Fri, 25 Aug 2023 10:56:04 +0200 Subject: [PATCH] docs: Include new config ecr_repository_vulnerability_minimum_severity (#2775) --- README.md | 2 +- docs/tutorials/configuration_file.md | 8 ++++++++ pyproject.toml | 2 +- 3 files changed, 10 insertions(+), 2 deletions(-) diff --git a/README.md b/README.md index 8ac0b90e..c0f3b53c 100644 --- a/README.md +++ b/README.md @@ -39,7 +39,7 @@ It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, Fe | Provider | Checks | Services | [Compliance Frameworks](https://docs.prowler.cloud/en/latest/tutorials/compliance/) | [Categories](https://docs.prowler.cloud/en/latest/tutorials/misc/#categories) | |---|---|---|---|---| -| AWS | 287 | 56 -> `prowler aws --list-services` | 25 -> `prowler aws --list-compliance` | 5 -> `prowler aws --list-categories` | +| AWS | 290 | 56 -> `prowler aws --list-services` | 25 -> `prowler aws --list-compliance` | 5 -> `prowler aws --list-categories` | | GCP | 73 | 11 -> `prowler gcp --list-services` | 1 -> `prowler gcp --list-compliance` | 2 -> `prowler gcp --list-categories`| | Azure | 23 | 4 -> `prowler azure --list-services` | CIS soon | 1 -> `prowler azure --list-categories` | | Kubernetes | Planned | - | - | - | diff --git a/docs/tutorials/configuration_file.md b/docs/tutorials/configuration_file.md index 92bbc8b8..98a572d3 100644 --- a/docs/tutorials/configuration_file.md +++ b/docs/tutorials/configuration_file.md @@ -25,6 +25,7 @@ The following list includes all the AWS checks with configurable variables that | `awslambda_function_using_supported_runtimes` | `obsolete_lambda_runtimes` | Integer | | `organizations_scp_check_deny_regions` | `organizations_enabled_regions` | List of Strings | | `organizations_delegated_administrators` | `organizations_trusted_delegated_administrators` | List of Strings | +| `ecr_repositories_scan_vulnerabilities_in_latest_image` | `ecr_repository_vulnerability_minimum_severity` | String | ## Azure @@ -94,6 +95,13 @@ aws: organizations_enabled_regions: [] organizations_trusted_delegated_administrators: [] + # AWS ECR + # ecr_repositories_scan_vulnerabilities_in_latest_image + # CRITICAL + # HIGH + # MEDIUM + ecr_repository_vulnerability_minimum_severity: "MEDIUM" + # Azure Configuration azure: diff --git a/pyproject.toml b/pyproject.toml index 5d2329fe..859c3e21 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -10,7 +10,7 @@ classifiers = [ "Programming Language :: Python :: 3.9", "License :: OSI Approved :: Apache Software License" ] -description = "Prowler is an Open Source security tool to perform Cloud Security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains more than 240 controls covering CIS, PCI-DSS, ISO27001, GDPR, HIPAA, FFIEC, SOC2, AWS FTR, ENS and custom security frameworks." +description = "Prowler is an Open Source security tool to perform AWS, GCP and Azure security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, AWS Well-Architected Framework Security Pillar, AWS Foundational Technical Review (FTR), ENS (Spanish National Security Scheme) and your custom security frameworks." license = "Apache-2.0" maintainers = [ "Sergio Garcia ",