prowler

mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 14:55:00 +00:00

Author	SHA1	Message	Date
Sergio Garcia	5c4cae8c9d	feat(wellarchitected): add WellArchitected service and check (#2461 )	2023-06-09 13:19:01 +02:00
Sergio Garcia	9cda78e561	chore(docs): improve allowlist suggestion (#2466 )	2023-06-09 13:07:28 +02:00
Sebastian Nyberg	3c2c896708	chore(vpc): add mapPublicIpOnLaunch attribute to VPC subnets (#2470 )	2023-06-09 12:45:28 +02:00
Jit	b73da9c54c	feat(gcp): add 12 new checks for CIS Framework (#2426 ) Co-authored-by: Sergio Garcia <sergargar1@gmail.com>	2023-06-08 11:25:51 +02:00
Pepe Fagoaga	b7bb4bbd57	fix(aws): Add missing resources ARN (#2453 )	2023-06-06 16:56:59 +02:00
Pepe Fagoaga	86cf2cd233	fix(efs): Include resource ARN and handle from input (#2452 )	2023-06-06 14:29:58 +02:00
Sergio Garcia	a8f03d859c	feat(gcp): add `--project-ids` flag and scan all projects by default (#2393 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-06-06 11:56:39 +02:00
Sergio Garcia	3c7580f024	fix(ec2): handle false positive in ec2_securitygroup_allow_ingress_from_internet_to_any_port (#2449 )	2023-06-06 11:55:27 +02:00
christiandavilakoobin	2955975793	fix(cloudfront): fix DefaultCacheConfigBehaviour enum type(#2430 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-06-05 15:48:34 +02:00
Sergio Garcia	58a29bf058	fix(codebuild): handle FAIL in codebuild_project_user_controlled_buildspec (#2410 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-05-25 13:30:01 +02:00
Toni de la Fuente	ff18fd2c38	chore(docs): add summary table to README.md (#2402 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io> Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>	2023-05-24 13:56:17 +02:00
Jit	3ab0cd02df	feat(checks-gcp): Include 4 new checks covering GCP CIS (#2376 ) Co-authored-by: Sergio Garcia <sergargar1@gmail.com> Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>	2023-05-24 12:10:43 +02:00
Sergio Garcia	c01c59023a	fix(ClientError): handle ClientErrors in DynamoDB and Directory Service (#2400 )	2023-05-24 11:50:08 +02:00
Sergio Garcia	deb9847e2b	fix(route53_dangling_ip_subdomain_takeover): notify only IPs with AWS IP Ranges (#2396 )	2023-05-23 16:35:13 +02:00
Pepe Fagoaga	9e9e7e1e96	fix(aws): Handle unique map keys (#2390 ) Co-authored-by: Sergio Garcia <sergargar1@gmail.com>	2023-05-23 15:54:22 +02:00
Sergio Garcia	aec254b05a	fix(inspector2): fix active findings count (#2395 )	2023-05-23 12:26:09 +02:00
Kevin Pullin	1234c1e7e2	fix(allowlist) - `tags` parameter is a string, not a list (#2375 )	2023-05-23 09:51:50 +02:00
Pepe Fagoaga	e84f5f184e	fix(sts): Use the right region to validate credentials (#2349 ) Co-authored-by: Sergio Garcia <sergargar1@gmail.com>	2023-05-18 15:51:57 +02:00
Pepe Fagoaga	9ceaefb663	fix(access-analyzer): Handle ResourceNotFoundException (#2336 )	2023-05-10 15:44:14 +02:00
Gabriel Soltz	ec03ea5bc1	feat(workspaces): New check workspaces_vpc_2private_1public_subnets_nat (#2286 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io> Co-authored-by: n4ch04 <nachor1992@gmail.com>	2023-05-10 15:40:42 +02:00
Sergio Garcia	5855633c1f	fix(resourceexplorer2): add resource id (#2335 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-05-10 14:48:34 +02:00
Pedro Martín	a53bc2bc2e	feat(rds): new check rds_instance_deprecated_engine_version (#2298 ) Co-authored-by: Sergio Garcia <sergargar1@gmail.com> Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>	2023-05-10 14:48:12 +02:00
Pepe Fagoaga	6f48012234	fix(ecr): Refactor service (#2302 ) Co-authored-by: Gabriel Soltz <thegaby@gmail.com> Co-authored-by: Kay Agahd <kagahd@users.noreply.github.com> Co-authored-by: Nacho Rivera <nachor1992@gmail.com> Co-authored-by: Kevin Pullin <kevin.pullin@gmail.com> Co-authored-by: Sergio Garcia <sergargar1@gmail.com>	2023-05-09 17:04:21 +02:00
Sergio Garcia	d344318dd4	feat(allowlist): allowlist a specific service (#2331 )	2023-05-09 15:43:04 +02:00
dependabot[bot]	0f3f3cbffd	build(deps-dev): bump moto from 4.1.8 to 4.1.9 (#2328 ) Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Sergio Garcia <sergargar1@gmail.com>	2023-05-09 11:38:41 +02:00
Sergio Garcia	bbcfca84ef	fix(trustedadvisor): avoid not_available checks (#2323 )	2023-05-08 17:55:31 +02:00
Sergio Garcia	784aaa98c9	feat(iam): add `iam_role_cross_account_readonlyaccess_policy` check (#2312 )	2023-05-08 13:27:51 +02:00
Kevin Pullin	c22bf01003	feat(allowlist): Support regexes in Tags to allow "or"-like conditional matching (#2300 ) Co-authored-by: Kevin Pullin <kevinp@nexttrucking.com> Co-authored-by: Sergio Garcia <sergargar1@gmail.com>	2023-05-05 14:56:27 +02:00
Nacho Rivera	05e4911d6f	fix(vpc services): list to dicts in vpc and subnets (#2310 )	2023-05-04 15:35:02 +02:00
Sergio Garcia	26a507e3db	feat(route53): add route53_dangling_ip_subdomain_takeover check (#2288 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-05-03 11:47:36 +02:00
Gabriel Soltz	030ca4c173	fix(backups): change severity and only check report_plans if plans exists (#2291 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-05-03 09:00:15 +02:00
Gabriel Soltz	22e7d2a811	feat(Organizations): New check organizations_tags_policies_enabled_and_attached (#2287 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-04-28 16:14:08 +02:00
Gabriel Soltz	9afe7408cd	feat(FMS): New Service FMS and Check fms_accounts_compliant (#2259 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io> Co-authored-by: Nacho Rivera <nacho@verica.io>	2023-04-28 11:47:55 +02:00
Gabriel Soltz	16af89c281	feat(autoscaling): new check autoscaling_group_multiple_az (#2273 )	2023-04-26 15:10:04 +02:00
Sergio Garcia	621e4258c8	feat(s3): add s3_bucket_object_lock check (#2274 )	2023-04-26 15:04:45 +02:00
Sergio Garcia	ac6272e739	fix(rds): check configurations for DB instances at cluster level (#2277 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-04-26 13:51:07 +02:00
Pepe Fagoaga	fdbdb3ad86	fix(sns_topics_not_publicly_accessible): Change PASS behaviour (#2282 )	2023-04-26 12:51:51 +02:00
Gabriel Soltz	fe6716cf76	feat(NetworkFirewall): New Service and Check (#2261 ) Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>	2023-04-26 11:58:11 +02:00
Pepe Fagoaga	58cad1a6b3	fix(log_group_retention): handle log groups that never expire (#2272 )	2023-04-25 10:45:43 +02:00
Sergio Garcia	47fa16e35f	chore(test): add CloudWatch and Logs tests (#2264 )	2023-04-24 17:05:05 +02:00
Gabriel Soltz	a87f769b85	feat(DRS): New DRS Service and Checks (#2257 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-04-24 14:22:22 +02:00
Gabriel Soltz	63501a0d59	feat(inspector2): New Service and Check (#2250 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io> Co-authored-by: Sergio Garcia <38561120+sergargar@users.noreply.github.com>	2023-04-24 12:15:16 +02:00
Sergio Garcia	f0b8b66a75	chore(test): add rds_instance_transport_encrypted test (#2252 )	2023-04-21 12:09:47 +02:00
Sergio Garcia	d51cdc068b	fix(iam_role_cross_service_confused_deputy_prevention): avoid service linked roles (#2249 )	2023-04-21 10:42:05 +02:00
Sergio Garcia	7a00f79a56	fix(iam_policy_no_administrative_privileges): check attached policies and AWS-Managed (#2200 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-04-19 14:34:53 +02:00
Gabriel Soltz	eee35f9cc3	feat(ssmincidents): New Service and Checks (#2219 ) Co-authored-by: Sergio Garcia <sergargar1@gmail.com> Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-04-19 12:26:20 +02:00
Gabriel Soltz	b3656761eb	feat(check): New VPC checks (#2218 )	2023-04-19 12:01:12 +02:00
Sergio Garcia	7b5fe34316	feat(html): add html to Azure and GCP (#2181 ) Co-authored-by: Pepe Fagoaga <pepe@verica.io>	2023-04-18 16:13:57 +02:00
Sergio Garcia	4536780a19	feat(check): new check ecr_registry_scan_images_on_push_enabled (#2237 )	2023-04-18 15:45:21 +02:00
Sergio Garcia	5e567f3e37	fix(iam tests): mock audit_info object (#2226 ) Co-authored-by: n4ch04 <nachor1992@gmail.com>	2023-04-17 11:14:48 +02:00

1 2 3 4

153 Commits