prowler

Fixes

• fix(allowlist): single account checks handling by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2585
• fix(assume_role): Set the AWS STS endpoint region by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2587
• fix(compute): solve key errors in compute service by @sergargar in https://github.com/prowler-cloud/prowler/pull/2610
• fix(ec2_ami_public): correct check metadata and logic by @sergargar in https://github.com/prowler-cloud/prowler/pull/2618
• fix(ecs_task_def_secrets): Improve description to explain findings by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2621
• fix(guardduty): handle disabled detectors in guardduty_is_enabled by @sergargar in https://github.com/prowler-cloud/prowler/pull/2616
• fix(opensearch): log exception as WARNING by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2581
• fix(pypi-release): solve GH action for release by @sergargar in https://github.com/prowler-cloud/prowler/pull/2624
• fix(s3): __get_object_lock_configuration__ warning logs by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2608
• fix(security): certifi issue by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2623
• fix(ssm_incidents): Handle empty name by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2591

Dependencies

• build(deps): bump azure-storage-blob from 12.16.0 to 12.17.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2596
• build(deps): bump google-api-python-client from 2.93.0 to 2.94.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2614
• build(deps): bump mkdocs-material from 9.1.18 to 9.1.19 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2615
• build(deps): bump pydantic from 1.10.11 to 1.10.12 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2613
• build(deps-dev): bump moto from 4.1.12 to 4.1.13 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2598

Chores

• chore(ec2): add SG name to resource_details by @sergargar in https://github.com/prowler-cloud/prowler/pull/2495
• chore(metadata): Typos by @gabriel-pragin-clearscale in https://github.com/prowler-cloud/prowler/pull/2594
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2606

Tests

• test(aws_provider): Role and User MFA by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2486

Documentation

• docs(boto3-configuration): format list by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2609
• docs(README): typos in README.md by @kagahd in https://github.com/prowler-cloud/prowler/pull/2579

New Contributors

• @gabriel-pragin-clearscale made their first contribution in https://github.com/prowler-cloud/prowler/pull/2594

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.7.1...3.7.2

Fixes

• fix(iam): Handle NoSuchEntityException when calling list_attached_role_policies by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2571
• fix(allowlist): handle wildcard in account field by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2577
• fix(cond parser): add policy condition parser & apply in SQS public check by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2575

Dependencies

• build(deps-dev): bump pytest-randomly from 3.12.0 to 3.13.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2567
• build(deps): bump boto3 from 1.26.161 to 1.26.165 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2566
• build(deps): bump pydantic from 1.10.9 to 1.10.11 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2568
• build(deps-dev): bump openapi-spec-validator from 0.5.7 to 0.6.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2569
• build(deps): bump google-api-python-client from 2.91.0 to 2.92.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2570

Chores

• chore(compliance): CIS Benchmark 2.0 for AWS by @toniblyx in https://github.com/prowler-cloud/prowler/pull/2562
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2560, https://github.com/prowler-cloud/prowler/pull/2561, https://github.com/prowler-cloud/prowler/pull/2572, https://github.com/prowler-cloud/prowler/pull/2574

Tests

• test(outputs): Remove debug by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2559

Documentation

• docs: Update Compliance in README by @toniblyx in https://github.com/prowler-cloud/prowler/pull/2563

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.7.0...3.7.1

Trapped in the web, but I cut the threads
Show you the gates of tomorrow
Trapped in the web, no mercy is shed
Show you the gates of tomorrow
Trapped in the web, slaves to the dead
Show you the gates of tomorrow
Trapped in the web, but I cut the threads
Show you the gates of tomorrow

As the song says, this version of Prowler is opening gates of tomorrow! More compliance frameworks like MITRE ATT&CK®, ISO27001 (2013), AWS Well-Architected Framework Reliability pillar (in addition to the existing Security pillar), better support for the Allowlist feature, with all 73 checks for GCP covering CIS Benchmark 2.0 for Google Cloud! Take this one and start closing doors to the bad guys!

New features to highlight in this version:

🥳 GCP CIS v2.0.0 benchmark coverage!

• Prowler now supports CIS v2.0.0 benchmark for Google Cloud Platform! There were added 73 checks of GCP to fully cover the CIS framework, you can execute it with the following flag to get all CSV standard and compliance, HTML, JSON and JSON OCSF reports:

prowler gcp --compliance cis_2.0_gcp

📝 New AWS compliance frameworks available

• Prowler now supports MITRE ATT&CK for AWS, ISO27001 (2013) for AWS and AWS Well-Architected Framework Reliability Pillar v0.1. Also, the Spanish ENS RD2022 Compliance Framework has been updated.

• You can run the new compliance frameworks with the following command:

prowler aws --compliance mitre_attack_aws
prowler aws --compliance iso27001_2013_aws
prowler aws --compliance aws_well_architected_framework_reliability_pillar_aws
prowler aws --compliance ens_rd2022_aws

⚙️ Allowlist supports exceptions:

• For each check you can except Accounts, Regions, Resources and/or Tags, see more in https://docs.prowler.cloud/en/latest/tutorials/allowlist/. Thanks @zfLQ2qx2 for the feedback!

Allowlist:
  Accounts:
    "*":
      Checks:
        "ecs_task_definitions_no_environment_secrets":
          Regions:
            - "*"
          Resources:
            - "*"
          Exceptions:
            Accounts:
              - "0123456789012"
            Regions:
              - "eu-west-1"
              - "eu-south-2"        # Will ignore every resource in check ecs_task_definitions_no_environment_secrets except the ones in account 0123456789012 located in eu-south-2 or eu-west-1

    "123456789012":
      Checks:
        "*":
          Regions:
            - "*"
          Resources:
            - "*"
          Exceptions:
            Resources:
              - "test"
            Tags:
              - "environment=prod"   # Will ignore every resource except in account 123456789012 except the ones containing the string "test" and tag environment=prod

What's Changed

Features

• feat(ENS): complete ENS Compliance Framework mapping by @sergargar in https://github.com/prowler-cloud/prowler/pull/2534
• feat(MITRE): add MITRE ATT&CK framework for AWS by @sergargar in https://github.com/prowler-cloud/prowler/pull/2537
• feat(allowlist): add exceptions to allowlist by @sergargar in https://github.com/prowler-cloud/prowler/pull/2527
• feat(compliance): AWS Well-Architected Framework Reliability Pillar v0.1 by @sssalim-aws in https://github.com/prowler-cloud/prowler/pull/2536
• feat(compliance): add ISO27001 compliance framework by @pedromarting3 in https://github.com/prowler-cloud/prowler/pull/2517
• feat(lambda service): mapping lambda service to awslambda by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2538
• feat(gcp): add CIS checks by @sergargar in https://github.com/prowler-cloud/prowler/pull/2544

Fixes

• fix(apigw): Update metadata for API GW checks by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2512
• fix(bigquery_dataset_public_access): handle status correctly by @sergargar in https://github.com/prowler-cloud/prowler/pull/2542
• fix(cloudwatch secrets): fix nonetype error handling by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2543
• fix(compliance): add version to ISO27001 by @sergargar in https://github.com/prowler-cloud/prowler/pull/2523
• fix(compliance): remove unnecessary Optional attributes by @sergargar in https://github.com/prowler-cloud/prowler/pull/2514
• fix(contrib): migrate multi-account-securityhub/run-prowler-securityhub.sh to v3 by @sergargar in https://github.com/prowler-cloud/prowler/pull/2503
• fix(gcp): update Prowler SDK info of GCP by @sergargar in https://github.com/prowler-cloud/prowler/pull/2515
• fix(iam): add StringLike condition in iam_role_cross_service_confused_deputy_prevention by @sergargar in https://github.com/prowler-cloud/prowler/pull/2533
• fix(list-checks): handle listing checks when -s by @sergargar in https://github.com/prowler-cloud/prowler/pull/2540
• fix(security hub): solve Security Hub format requirements by @sergargar in https://github.com/prowler-cloud/prowler/pull/2520
• fix(vpc): handle ephemeral VPC endpoint services by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2501
• fix(reporting docs): fix S3 reporting desc by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2551
• fix(allowlist): reformat allowlist logic by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2555

Chores

• chore(OCSF): improve OCSF logic by @sergargar in https://github.com/prowler-cloud/prowler/pull/2502
• chore(ec2): reduce noise in Security Groups checks by @sergargar in https://github.com/prowler-cloud/prowler/pull/2525
• chore(region): add get_default_region function in AWS Services by @sergargar in https://github.com/prowler-cloud/prowler/pull/2524
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2539
• chore(docs): update DynamoDB allowlist example by @sergargar in https://github.com/prowler-cloud/prowler/pull/2552
• chore(docs): Update Amazon Linux 2 installation by @czantoine in https://github.com/prowler-cloud/prowler/pull/2553

Dependencies

• build(deps): bump boto3 from 1.26.147 to 1.26.156 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2511
• build(deps): bump botocore from 1.29.156 to 1.29.161 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2528
• build(deps): bump google-api-python-client from 2.89.0 to 2.90.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2531
• build(deps): bump mkdocs-material from 9.1.16 to 9.1.17 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2529
• build(deps-dev): bump moto from 4.1.11 to 4.1.12 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2530
• build(deps-dev): bump openapi-spec-validator from 0.5.6 to 0.5.7 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2507
• build(deps-dev): bump pytest from 7.3.2 to 7.4.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2532

New Contributors

• @czantoine made their first contribution in https://github.com/prowler-cloud/prowler/pull/2553

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.6.1...3.7.0

Fixes

• fix(rds checks): test if key exists prior checking it by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2489
• fix(security hub): Adds logic to map to valid ASFF statuses by @ckdake in https://github.com/prowler-cloud/prowler/pull/2491
• fix(route53): correct Hosted Zone ARN by @sergargar in https://github.com/prowler-cloud/prowler/pull/2494
• fix(asff): handle empty Recommendation Url by @sergargar in https://github.com/prowler-cloud/prowler/pull/2496

New Contributors

• @ckdake made their first contribution in https://github.com/prowler-cloud/prowler/pull/2491

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.6.0...3.6.1

Die With Your Boots On is a song of Iron Maiden's album Piece of mind, it is self explanatory, we like the vibe of that song in their lives, watch it here.
Basically, this is what we do here, we go all in or nothing! 💪🏼
We are bringing the best we have in this code of Prowler 3.6.0: some new checks, improved GCP support, new features, more fixes making it a better piece of software and more helpful for your daily job 😄
Remember to run pip install prowler --upgrade and rock on! 🤘

New features to highlight in this version:

🥳 GCP Multi-Project support:

• Prowler now supports GCP Multi-Project scans! By default Prowler will scan all the GCP Projects that is allowed to scan, if you want to scan a single project or various specific projects you can use the following flag:

prowler gcp --project-ids <Project ID 1> <Project ID 2> ... <Project ID N>

✅ 16 new checks for GCP (Thanks to @jit-contrib ! 💪🏼 ):

• New services ApiKeys, DNS and Dataproc are covered and additional checks for Compute and IAM services.
• See all checks with prowler gcp --list-checks

📝 OCSF Integration (Hello Amazon Security Lake!):

• OCSF JSON was added as a default output for AWS, Azure and GCP. It was based on the OCSF Schema's Security Finding v1.0.0-rc.3.

📊 AWS Well Architected Framework:

• The Security Pillar of the AWS Well-Architected Framework is now supported by Prowler, you can run it with the following command:

prowler aws --compliance aws_well_architected_framework_security_pillar_aws

⚙️ MFA supported in AWS:

• If your IAM entity enforces MFA for AWS Calls you can use --mfa and Prowler will ask you to input the following values to get a new session:

prowler aws --mfa
Enter ARN of MFA: arn:aws:iam::012345678910:mfa/xxxxxx
Enter MFA code: XXXXXX

What's Changed

Features

• feat(checks-gcp): Include 4 new checks covering GCP CIS by @jit-contrib in https://github.com/prowler-cloud/prowler/pull/2376
• feat(gcp): add 12 new checks for CIS Framework by @jit-contrib in https://github.com/prowler-cloud/prowler/pull/2426
• feat(gcp): add --project-ids flag and scan all projects by default by @sergargar in https://github.com/prowler-cloud/prowler/pull/2393
• feat(mfa): Add MFA flag if it is required by AWS IAM Entity by @senyberg in https://github.com/prowler-cloud/prowler/pull/2478
• feat(new_security_framework): AWS Well Architected Framework security pillar by @pedromarting3 in https://github.com/prowler-cloud/prowler/pull/2382
• feat(ocsf): add OCSF format as JSON output for AWS, Azure and GCP. Hello Amazon Security Lake! by @sergargar in https://github.com/prowler-cloud/prowler/pull/2429
• feat(vpc): add check vpc_subnet_no_public_ip_by_default by @senyberg in https://github.com/prowler-cloud/prowler/pull/2472
• feat(wellarchitected): add WellArchitected service and check by @sergargar in https://github.com/prowler-cloud/prowler/pull/2461

Fixes

• fix(arn validator): include : in regex by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2471
• fix(aws): Add missing resources ARN by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2453
• fix(azure): fix empty subscriptions case by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2455
• fix(backup): Handle last_execution_date when None by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2454
• fix(browser auth): fix browser auth in Azure to include tenant id by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2415
• fix(cloudfront): Bad https_enabled check comparison by @christiandavilakoobin in https://github.com/prowler-cloud/prowler/pull/2430
• fix(codebuild): handle FAIL in codebuild_project_user_controlled_buildspec by @sergargar in https://github.com/prowler-cloud/prowler/pull/2410
• fix(dataevents checks): add trails home region by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2484
• fix(ec2): handle false positive in ec2_securitygroup_allow_ingress_from_internet_to_any_port by @sergargar in https://github.com/prowler-cloud/prowler/pull/2449
• fix(ecr): handle LifecyclePolicyNotFoundException by @sergargar in https://github.com/prowler-cloud/prowler/pull/2411
• fix(efs): Include resource ARN and handle from input by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2452
• fix(inventory): handle exception for every call by @sergargar in https://github.com/prowler-cloud/prowler/pull/2457
• fix(kms): check only KMS CMK tags by @sergargar in https://github.com/prowler-cloud/prowler/pull/2468
• fix(README): add references to tenant-id when browser auth by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2439
• fix(services): Handle AWS service errors by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2440
• fix(services): verify Route53 records and handle TrustedAdvisor error by @sergargar in https://github.com/prowler-cloud/prowler/pull/2448
• fix(typo): typo in README.md by @sergargar in https://github.com/prowler-cloud/prowler/pull/2406
• fix(typo) typo in README.md by @toniblyx in https://github.com/prowler-cloud/prowler/pull/2407

Chores

• chore(arn): add missing ARNs to AWS Services by @sergargar in https://github.com/prowler-cloud/prowler/pull/2476
• chore(arn): include ARN of AWS accounts by @sergargar in https://github.com/prowler-cloud/prowler/pull/2477
• chore(boto3): update boto3 config by @sergargar in https://github.com/prowler-cloud/prowler/pull/2459
• chore(compliance): Update Description in aws_well_architected_framework_security_pillar_aws.json by @sssalim-aws in https://github.com/prowler-cloud/prowler/pull/2432
• chore(docs): add summary table to README.md by @toniblyx in https://github.com/prowler-cloud/prowler/pull/2402
• chore(docs): Create CONTRIBUTING.md by @toniblyx in https://github.com/prowler-cloud/prowler/pull/2416
• chore(docs): improve allowlist suggestion by @sergargar in https://github.com/prowler-cloud/prowler/pull/2466
• chore(docs): improve custom checks docs by @sergargar in https://github.com/prowler-cloud/prowler/pull/2428
• chore(logo): Add Prowler logo in SVG format & Propose to Prowler icon design by @dsict in https://github.com/prowler-cloud/prowler/pull/2423
• chore(quick inventory): add warning message by @sergargar in https://github.com/prowler-cloud/prowler/pull/2460
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2474
• chore(vpc): add mapPublicIpOnLaunch attribute to VPC subnets by @senyberg in https://github.com/prowler-cloud/prowler/pull/2470

Dependencies

• build(deps): bump alive-progress from 3.1.1 to 3.1.4 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2446
• build(deps): bump boto3 from 1.26.142 to 1.26.147 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2480
• build(deps): bump botocore from 1.29.147 to 1.29.152 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2482
• build(deps): bump cryptography from 40.0.2 to 41.0.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2436
• build(deps): bump google-api-python-client from 2.86.0 to 2.88.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2483
• build(deps): bump mkdocs-material from 9.1.12 to 9.1.15 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2420
• build(deps): bump pydantic from 1.10.8 to 1.10.9 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2481
• build(deps-dev): bump coverage from 7.2.5 to 7.2.7 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2422
• build(deps-dev): bump docker from 6.1.2 to 6.1.3 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2445
• build(deps-dev): bump moto from 4.1.10 to 4.1.11 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2443
• build(deps-dev): bump pytest-xdist from 3.3.0 to 3.3.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2421
• build(deps-dev): bump pytest from 7.3.1 to 7.3.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2479

New Contributors

• @jit-contrib made their first contribution in https://github.com/prowler-cloud/prowler/pull/2376
• @dsict made their first contribution in https://github.com/prowler-cloud/prowler/pull/2423
• @sssalim-aws made their first contribution in https://github.com/prowler-cloud/prowler/pull/2432
• @christiandavilakoobin made their first contribution in https://github.com/prowler-cloud/prowler/pull/2430
• @senyberg made their first contribution in https://github.com/prowler-cloud/prowler/pull/2470

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.5.3...3.6.0

Fixes

• fix(ClientError): handle ClientErrors in DynamoDB and Directory Service by @sergargar in https://github.com/prowler-cloud/prowler/pull/2400
• fix(OSError): handle different OSErrors by @kij in https://github.com/prowler-cloud/prowler/pull/2398
• fix(allowlist) - tags parameter is a string, not a list by @kppullin in https://github.com/prowler-cloud/prowler/pull/2375
• fix(aws): Handle unique map keys by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2390
• fix(categories): remove empty categories from metadata by @sergargar in https://github.com/prowler-cloud/prowler/pull/2401
• fix(inspector2): fix active findings count by @sergargar in https://github.com/prowler-cloud/prowler/pull/2395
• fix(pypi-release): Push version change to the branch by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2374
• fix(route53_dangling_ip_subdomain_takeover): notify only IPs with AWS IP Ranges by @sergargar in https://github.com/prowler-cloud/prowler/pull/2396

Dependencies

• build(deps): bump azure-identity from 1.12.0 to 1.13.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2386
• build(deps): bump boto3 from 1.26.125 to 1.26.138 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2389
• build(deps): bump botocore from 1.29.134 to 1.29.138 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2383
• build(deps): bump requests from 2.30.0 to 2.31.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2388
• build(deps): bump shodan from 1.29.0 to 1.29.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2385
• build(deps-dev): bump moto from 4.1.9 to 4.1.10 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2384

Chores

• chore(quick-inventory): send quick inventory to output bucket by @sergargar in https://github.com/prowler-cloud/prowler/pull/2399
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2378

New Contributors

• @kij made their first contribution in https://github.com/prowler-cloud/prowler/pull/2398

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.5.2...3.5.3

Fixes

• fix(action): solve pypi-release action creating the release branch by @sergargar in https://github.com/prowler-cloud/prowler/pull/2364
• fix(sts): Use the right region to validate credentials by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2349
• fix(resource_not_found): Handle error by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2370
• fix(ssm incidents): check if service available in aws partition by @sergargar in https://github.com/prowler-cloud/prowler/pull/2372

Chores

• chore(docs): format regions-and-partitions by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2371
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2366

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.5.1...3.5.2

Fixes

• fix(README): order providers alphabetically by @sergargar in https://github.com/prowler-cloud/prowler/pull/2344
• fix(README): update Architecture image and PyPi links by @sergargar in https://github.com/prowler-cloud/prowler/pull/2345
• fix(route53): handle empty Records in Zones by @sergargar in https://github.com/prowler-cloud/prowler/pull/2351

Dependencies

• build(deps): bump pymdown-extensions from 9.11 to 10.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2355
• build(deps): bump shodan from 1.28.0 to 1.29.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2356
• build(deps): bump botocore from 1.29.125 to 1.29.134 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2357
• build(deps-dev): bump pytest-xdist from 3.2.1 to 3.3.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2358
• build(deps): bump mkdocs-material from 9.1.8 to 9.1.12 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2359
• build(deps-dev): bump docker from 6.1.1 to 6.1.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2360

Chores

• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2350
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2353

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.5.0...3.5.1

I like the story behind this Iron Maiden song. Enjoy Prowler 3.5.0 - Dune!

New features to highlight in this version:

🥳 Slack integration:

• Prowler now supports Slack integrations! Send a summary of the execution with a Slack APP in your channel, see more in our Integrations Docs

✅ 9 new checks for AWS:

• New services covered like FMS and NetworkFirewall, additional checks for AutoScaling, Organizations, RDS, Route53, S3, SSM Incidents and Workspaces.
• New important checks:
  • iam_role_cross_account_readonlyaccess_policy Ensure IAM Roles do not have ReadOnlyAccess access for external AWS accounts
  • route53_dangling_ip_subdomain_takeover Check if Route53 Records contains dangling IPs (based on https://github.com/assetnote/ghostbuster)
• See all checks withprowler aws --list-checks

🔨 Allowlist improvements:

• You can allowlist an specific service and include regex expressions in the tags, see more in our Allowlist Docs

What's Changed:

Features

• feat(allowlist): allowlist a specific service by @sergargar in https://github.com/prowler-cloud/prowler/pull/2331
• feat(allowlist): Support regexes in Tags to allow "or"-like conditional matching by @kppullin in https://github.com/prowler-cloud/prowler/pull/2300
• feat(autoscaling): new check autoscaling_group_multiple_az by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2273
• feat(FMS): New Service FMS and Check fms_accounts_compliant by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2259
• feat(iam): add iam_role_cross_account_readonlyaccess_policy check by @sergargar in https://github.com/prowler-cloud/prowler/pull/2312
• feat(NetworkFirewall): New Service and Check by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2261
• feat(Organizations): New check organizations_tags_policies_enabled_and_attached by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2287
• feat(pre-commit): added trufflehog to pre-commit by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2311
• feat(rds): new check rds_instance_deprecated_engine_version by @pedromarting3 in https://github.com/prowler-cloud/prowler/pull/2298
• feat(route53): add route53_dangling_ip_subdomain_takeover check by @sergargar in https://github.com/prowler-cloud/prowler/pull/2288
• feat(s3): add s3_bucket_object_lock check by @sergargar in https://github.com/prowler-cloud/prowler/pull/2274
• feat(slack): add Slack App integration by @sergargar in https://github.com/prowler-cloud/prowler/pull/2305
• feat(ssmincidents): Use regional_client region instead of audit_profile region by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2306
• feat(workspaces): New check workspaces_vpc_2private_1public_subnets_nat by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2286

Fixes

• fix(access-analyzer): Handle ResourceNotFoundException by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2336
• fix(apigateway2): correct paginator name by @sergargar in https://github.com/prowler-cloud/prowler/pull/2283
• fix(backup): Return [] when None AdvancedBackupSettings by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2304
• fix(backups): change severity and only check report_plans if plans exists by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2291
• fix(client_error): Handle errors by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2308
• fix(cloudfront_distributions_https_enabled): Add default case by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2329
• fix(cloudtrail): handle InsightNotEnabledException error by @sergargar in https://github.com/prowler-cloud/prowler/pull/2322
• fix(ecr): Refactor service by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2302
• fix(emr): Handle InvalidRequestException by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2320
• fix(iam): Handle ListRoleTags and policy errors by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2319
• fix(opensearch): Handle invalid JSON policy by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2262
• fix(rds): check configurations for DB instances at cluster level by @sergargar in https://github.com/prowler-cloud/prowler/pull/2277
• fix(resourceexplorer2): add resource id by @sergargar in https://github.com/prowler-cloud/prowler/pull/2335
• fix(s3): handle NoSuchBucket error by @sergargar in https://github.com/prowler-cloud/prowler/pull/2289
• fix(sagemaker): Handle ValidationException by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2321
• fix(sns_topics_not_publicly_accessible): Change PASS behaviour by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2282
• fix(trustedadvisor): avoid not_available checks by @sergargar in https://github.com/prowler-cloud/prowler/pull/2323
• fix(typo): remove redundant lines by @kagahd in https://github.com/prowler-cloud/prowler/pull/2307
• fix(typo): typo in backup_vaults_exist check title by @sergargar in https://github.com/prowler-cloud/prowler/pull/2317
• fix(vpc services): list to dicts in vpc and subnets by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2310

Chores

• chore(docs): improve GCP docs by @sergargar in https://github.com/prowler-cloud/prowler/pull/2318
• chore(docs): improve security hub docs by @sergargar in https://github.com/prowler-cloud/prowler/pull/2285
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2334

Dependencies

• build(deps): bump boto3 from 1.26.115 to 1.26.125 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2327
• build(deps): bump botocore from 1.29.115 to 1.29.125 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2301
• build(deps): bump google-api-python-client from 2.84.0 to 2.86.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2296
• build(deps): bump mkdocs-material from 9.1.6 to 9.1.8 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2294
• build(deps): bump mkdocs from 1.4.2 to 1.4.3 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2324
• build(deps-dev): bump coverage from 7.2.3 to 7.2.5 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2297
• build(deps-dev): bump docker from 6.0.1 to 6.1.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2326
• build(deps-dev): bump moto from 4.1.8 to 4.1.9 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2328
• build(deps-dev): bump pylint from 2.17.3 to 2.17.4 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2325

New Contributors

• @kppullin made their first contribution in https://github.com/prowler-cloud/prowler/pull/2300

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.4.1...3.5.0

Fixes

• fix(iam_role_cross_service_confused_deputy_prevention): avoid service linked roles by @sergargar in https://github.com/prowler-cloud/prowler/pull/2249
• fix(version): execute check current version function only when -v by @sergargar in https://github.com/prowler-cloud/prowler/pull/2263
• fix(log_group_retention): handle log groups that never expire by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2272

Chores

• chore(test): add rds_instance_transport_encrypted test by @sergargar in https://github.com/prowler-cloud/prowler/pull/2252
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2251
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2258
• chore(test): add CloudWatch and Logs tests by @sergargar in https://github.com/prowler-cloud/prowler/pull/2264

Builds

• build(deps-dev): bump pytest from 7.3.0 to 7.3.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2266
• build(deps-dev): bump pylint from 2.17.2 to 2.17.3 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2267
• build(deps-dev): bump moto from 4.1.7 to 4.1.8 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2268
• build(deps): bump boto3 from 1.26.105 to 1.26.115 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2269
• build(deps): bump azure-mgmt-security from 4.0.0 to 5.0.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2270

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.4.0...3.4.1

Take a look in the pool and what do you see
In the dark depths there faces beckoning me
Can't you see them it's plain for all to see
They were there oh I know you don't believe me

Still Life is one of those jewels that Iron Maiden has (well… aren’t jewels all their songs? 😉) and it is so good that they also included it in their live double vhs/dvd/cd/lp called “Maiden England” back in 1988. The song is based on a book from Ramsey Campbell called "The Inhabitant of the lake and less welcome tenants”, and it is about somebody that see ghosts in the bottom of a lake and gets crazy about that. They are like cloud security vulnerabilities, they are everywhere and seems to be hard to beat them. Listen to the song here 🔥Still Life🔥 while hardening and reading below what we did.

A brand new version of Prowler 3.4.0 at your command! This version won’t make your ghosts to disappear but will help you to put them in their place and in line to start the journey of getting rid of them. Time to shine up your boots with pip install prowler --upgrade.

New features to highlight in this version:

☁️ New support for Google Cloud with 43 checks!:

• GCP services covered: IAM, BigQuery, CloudSQL, CloudStorage, Compute, KMS and Logging.
• Run prowler gcp --list-checks for details and visit our Prowler GCP documentation here.

✅ 21 new checks for AWS:

• New services covered like Organizations best practices, SSM Incidents, Resource Explorer, Backup, additional checks for CloudTrail, ECR scan on push check updated, GuardDuty, VPC best practices, IAM (see these ones that will help you a lot!) thanks to @gabrielsoltz
• Watch out! iam_policy_no_administrative_privileges has been renamed to iam_customer_unattached_policy_no_administrative_privileges
• New important IAM checks:
  • [iam_aws_attached_policy_no_administrative_privileges] Ensure IAM AWS-Managed policies that allow full ":" administrative privileges are not attached - iam [high]
  • [iam_customer_attached_policy_no_administrative_privileges] Ensure IAM Customer-Managed policies that allow full ":" administrative privileges are not attached - iam [high]
  • [iam_customer_unattached_policy_no_administrative_privileges] Ensure IAM policies that allow full ":" administrative privileges are not created - iam [low]
• See all checks withprowler aws --list-checks

📊 New html report for Azure and GCP:

• When running Azure or GCP checks, html report is now also created for you to enjoy them during your security assessments.

⚙️ Custom checks now supported:

• You can create your custom checks inside Prowler or in your custom folders following our Developer Guide and a Tutorial about it here, new option -x/--checks-folder for your custom checks.

🏷️ Resource Tags supported in Allow list:

• Take advantage of Allow list during your scans also using tags filers, more information here https://docs.prowler.cloud/en/latest/tutorials/allowlist/.

What's Changed:

Features

• feat(allowlist): Add tags filter to allowlist by @sergargar in https://github.com/prowler-cloud/prowler/pull/2105
• feat(backup): New backup service and checks by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2172
• feat(banner): Include Azure credential banner by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2179
• feat(check): New Check and Service: resourceexplorer2_indexes_found by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2196
• feat(check): New check ecr_registry_scan_images_on_push_enabled by @sergargar in https://github.com/prowler-cloud/prowler/pull/2237
• feat(check): New CloudTrail check cloudtrail_insights_exist by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2184
• feat(check): New CloudTrail check cloudtrail_bucket_requires_mfa_delete by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2194
• feat(check): New GuardDuty check guardduty_centrally_managed by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2195
• feat(check): New VPC checks by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2218
• feat(checks): New IAM Checks no full access to critical services by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2183
• feat(checks): New IAM check iam_securityaudit_role_created by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2182
• feat(custom checks): Add -x/--checks-folder for custom checks by @sergargar in https://github.com/prowler-cloud/prowler/pull/2191
• feat(gcp): Add Google Cloud provider with 43 checks by @sergargar in https://github.com/prowler-cloud/prowler/pull/2125
• feat(html): Add html to Azure and GCP by @sergargar in https://github.com/prowler-cloud/prowler/pull/2181
• feat(new_checks): New AWS Organizations checks by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2133
• feat(orgs checks region): Add region to all Organizations checks by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2202
• feat(ssmincidents): New Service and Checks by @gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/2219

Fixes

• fix(audit_info): Azure subscriptions parsing error by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2147
• fix(aws_provider): Fix assessment session name by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2132
• fix(azure output): Change default values of audit identity metadata by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2144
• fix(brew): Move brew formula action to the bottom by @sergargar in https://github.com/prowler-cloud/prowler/pull/2135
• fix(cloudformation): Handle ValidationError by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2166
• fix(dax): Call list_tags using the cluster ARN by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2167
• fix(defender service): Retrieve key dicts with get by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2129
• fix(delete check): Delete check ec2.._in_use_without_ingrgess_filtering by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2148
• fix(docs): Check extra_742 name adjusted in the V2 to V3 mapping by @cerontrustly in https://github.com/prowler-cloud/prowler/pull/2154
• fix(elb-test): Use a mocked current audit info by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2207
• fix(elbv2 desync check): Mixed elbv2 desync and smuggling by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2171
• fix(errors): Solve ECR and CodeArtifact errors by @sergargar in https://github.com/prowler-cloud/prowler/pull/2239
• fix(gcp): Handle error when Project ID is None by @sergargar in https://github.com/prowler-cloud/prowler/pull/2130
• fix(global services): Fix global services region by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2203
• fix(iam): Handle LimitExceededException when calling generate_credential_report by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2168
• fix(iam): Handle no display name error in service account by @sergargar in https://github.com/prowler-cloud/prowler/pull/2176
• fix(iam tests): Mock audit_info object by @sergargar in https://github.com/prowler-cloud/prowler/pull/2226
• fix(iam_policy_no_administrative_privileges): Check attached policies and AWS-Managed by @sergargar in https://github.com/prowler-cloud/prowler/pull/2200
• fix(kms): Handle empty principal error by @sergargar in https://github.com/prowler-cloud/prowler/pull/2192
• fix(logging): Add default resource id when no resources by @sergargar in https://github.com/prowler-cloud/prowler/pull/2177
• fix(output bucket): Solve IsADirectoryError using compliance flag by @sergargar in https://github.com/prowler-cloud/prowler/pull/2121
• fix(pipeline build): Fix wording when build and push by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2169
• fix(pypi): Set base branch when updating release version by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2152
• fix(quickinventory): AttributError when creating inventory table by @bnugent in https://github.com/prowler-cloud/prowler/pull/2122
• fix(rds): Handle DBSnapshotNotFound by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2165
• fix(readme): Add GCP provider to README introduction by @sergargar in https://github.com/prowler-cloud/prowler/pull/2143
• fix(redshift): correct description in redshift_cluster_automatic_upgrades by @rubtoa https://github.com/prowler-cloud/prowler/pull/2246
• fix(resourceexplorer2): Solve test and region by @sergargar in https://github.com/prowler-cloud/prowler/pull/2206
• fix(resource_not_found): Handle error by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2136
• fix(rds): exclude Aurora in rds_instance_transport_encrypted check by @sergargar https://github.com/prowler-cloud/prowler/pull/2245
• fix(s3): Handle if ignore_public_acls is None by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2128
• fix(secretsmanager_automatic_rotation_enabled): Improve description for Secrets Manager secret rotation by @visit1985 in https://github.com/prowler-cloud/prowler/pull/2156
• fix(ssm): Handle ValidationException when retrieving documents by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2146
• fix(test): Call cloudtrail_s3_dataevents_write_enabled check by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2204
• fix(test): Mock audit info in services https://github.com/prowler-cloud/prowler/pull/2208 https://github.com/prowler-cloud/prowler/pull/2210 https://github.com/prowler-cloud/prowler/pull/2211 https://github.com/prowler-cloud/prowler/pull/2209 https://github.com/prowler-cloud/prowler/pull/2224 https://github.com/prowler-cloud/prowler/pull/2215 https://github.com/prowler-cloud/prowler/pull/2223 https://github.com/prowler-cloud/prowler/pull/2212 https://github.com/prowler-cloud/prowler/pull/2213 https://github.com/prowler-cloud/prowler/pull/2225
• fix(version): Handle request response property by @sergargar in https://github.com/prowler-cloud/prowler/pull/2175

Builds

• build(deps): bump alive-progress from 3.1.0 to 3.1.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2187
• build(deps): bump azure-mgmt-security from 3.0.0 to 4.0.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2141
• build(deps): bump azure-storage-blob from 12.15.0 to 12.16.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2230
• build(deps): bump boto3 from 1.26.90 to 1.26.105 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2232
• build(deps): bump botocore from 1.29.105 to 1.29.115 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2233
• build(deps): bump google-api-python-client from 2.81.0 to 2.84.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2188
• build(deps): bump mkdocs-material from 9.1.5 to 9.1.6 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2186
• build(deps): bump pydantic from 1.10.6 to 1.10.7 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2139
• build(deps-dev): bump coverage from 7.2.2 to 7.2.3 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2234
• build(deps-dev): bump moto from 4.1.6 to 4.1.7 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2231
• build(deps-dev): bump pylint from 2.17.0 to 2.17.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2161
• build(deps-dev): bump pytest from 7.2.2 to 7.3.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2185

Chores

• chore(regions): Sort AWS regions by @sergargar in https://github.com/prowler-cloud/prowler/pull/2198
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2236
• chore(docs): Developer Guide - how to create a new check by @sergargar in https://github.com/prowler-cloud/prowler/pull/2137
• chore(docs): Improve quick inventory section by @sergargar in https://github.com/prowler-cloud/prowler/pull/2117
• chore(docs): Improve reporting documentation by @sergargar in https://github.com/prowler-cloud/prowler/pull/2119
• chore(docs): Remove list severities by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2116

New Contributors

• @bnugent made their first contribution in https://github.com/prowler-cloud/prowler/pull/2122
• @cerontrustly made their first contribution in https://github.com/prowler-cloud/prowler/pull/2154
• @visit1985 made their first contribution in https://github.com/prowler-cloud/prowler/pull/2156
• @rubtoa made their first contribution in https://github.com/prowler-cloud/prowler/pull/2246

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.3.4...3.4.0

Fixes

• fix(docs): check extra_742 name adjusted in the V2 to V3 mapping by @cerontrustly in https://github.com/prowler-cloud/prowler/pull/2154
• fix(secretsmanager_automatic_rotation_enabled): Improve description for Secrets Manager secret rotation by @visit1985 in https://github.com/prowler-cloud/prowler/pull/2156
• fix(rds): Handle DBSnapshotNotFound by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2165
• fix(cloudformation): Handle ValidationError by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2166
• fix(iam): Handle LimitExceededException when calling generate_credential_report by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2168
• fix(dax): Call list_tags using the cluster ARN by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2167
• fix(pipeline build): fixed wording when build and push by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2169
• fix(elbv2 desync check): Mixed elbv2 desync and smuggling by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2171

Chores

• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2155 https://github.com/prowler-cloud/prowler/pull/2159 https://github.com/prowler-cloud/prowler/pull/2170 https://github.com/prowler-cloud/prowler/pull/2173

Dependencies

• build(deps-dev): bump pylint from 2.17.0 to 2.17.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2161
• build(deps): bump mkdocs-material from 9.1.4 to 9.1.5 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2162
• build(deps): bump botocore from 1.29.100 to 1.29.105 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2163
• build(deps-dev): bump moto from 4.1.5 to 4.1.6 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2164

New Contributors

• @cerontrustly made their first contribution in https://github.com/prowler-cloud/prowler/pull/2154
• @visit1985 made their first contribution in https://github.com/prowler-cloud/prowler/pull/2156

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.3.2...3.3.3

Fixes

• fix(docs): check extra_742 name adjusted in the V2 to V3 mapping by @cerontrustly in https://github.com/prowler-cloud/prowler/pull/2154
• fix(secretsmanager_automatic_rotation_enabled): Improve description for Secrets Manager secret rotation by @visit1985 in https://github.com/prowler-cloud/prowler/pull/2156
• fix(rds): Handle DBSnapshotNotFound by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2165
• fix(cloudformation): Handle ValidationError by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2166
• fix(iam): Handle LimitExceededException when calling generate_credential_report by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2168
• fix(dax): Call list_tags using the cluster ARN by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2167
• fix(pipeline build): fixed wording when build and push by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2169
• fix(elbv2 desync check): Mixed elbv2 desync and smuggling by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2171

Chores

• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2155 https://github.com/prowler-cloud/prowler/pull/2159 https://github.com/prowler-cloud/prowler/pull/2170 https://github.com/prowler-cloud/prowler/pull/2173

Dependencies

• build(deps-dev): bump pylint from 2.17.0 to 2.17.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2161
• build(deps): bump mkdocs-material from 9.1.4 to 9.1.5 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2162
• build(deps): bump botocore from 1.29.100 to 1.29.105 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2163
• build(deps-dev): bump moto from 4.1.5 to 4.1.6 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2164

New Contributors

• @cerontrustly made their first contribution in https://github.com/prowler-cloud/prowler/pull/2154
• @visit1985 made their first contribution in https://github.com/prowler-cloud/prowler/pull/2156

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.3.2...3.3.3

Fixes

• fix(pypi): Build from release branch by @jfagoagas in #2151

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.3.1...3.3.2

Fixes

• fix(output bucket): solve IsADirectoryError using compliance flag by @sergargar in https://github.com/prowler-cloud/prowler/pull/2121
• fix(quickinventory): AttributError when creating inventory table by @bnugent in https://github.com/prowler-cloud/prowler/pull/2122
• fix(aws_provider): Fix assessment session name by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2132
• fix(brew): move brew formula action to the bottom by @sergargar in https://github.com/prowler-cloud/prowler/pull/2135
• fix(s3): handle if ignore_public_acls is None by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2128
• fix(defender service): retrieving key dicts with get by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2129
• fix(resource_not_found): Handle error by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2136
• fix(readme): add GCP provider to README introduction by @sergargar in https://github.com/prowler-cloud/prowler/pull/2143
• fix(azure output): change default values of audit identity metadata by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2144
• fix(delete check): delete check ec2.._in_use_without_ingrgess_filtering by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2148
• fix(audit_info): azure subscriptions parsing error by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2147
• fix(ssm): Handle ValidationException when retrieving documents by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2146
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2149

Chores

• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2104
• chore(version): check latest version by @sergargar in https://github.com/prowler-cloud/prowler/pull/2106

Docs

• docs: Remove list severities by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2116
• docs(developer-guide): added phase 1 of dev guide by @toniblyx in https://github.com/prowler-cloud/prowler/pull/1904
• docs: improve quick inventory section by @sergargar in https://github.com/prowler-cloud/prowler/pull/2117
• docs: improve reporting documentation by @sergargar in https://github.com/prowler-cloud/prowler/pull/2119
• docs: Developer Guide - how to create a new check by @sergargar in https://github.com/prowler-cloud/prowler/pull/2137

Dependencies

• build(deps-dev): bump openapi-spec-validator from 0.5.5 to 0.5.6 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2110
• build(deps-dev): bump coverage from 7.2.1 to 7.2.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2112
• build(deps-dev): bump moto from 4.1.4 to 4.1.5 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2111
• build(deps): bump mkdocs-material from 9.1.2 to 9.1.3 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2113
• build(deps): bump boto3 from 1.26.86 to 1.26.90 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2114
• build(deps): bump alive-progress from 3.0.1 to 3.1.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2138
• build(deps): bump pydantic from 1.10.6 to 1.10.7 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2139
• build(deps): bump mkdocs-material from 9.1.3 to 9.1.4 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2140
• build(deps): bump botocore from 1.29.90 to 1.29.100 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2142

New Contributors

• @bnugent made their first contribution in https://github.com/prowler-cloud/prowler/pull/2122

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.3.0...3.3.1

Through earth and water, fire and wind
You came at last, nothing was the end...

As this series of Prowler versions, Sun and Steel is a song part of Piece of Mind album of Iron Maiden. In this side of the world (north hemisphere), spring is about to start and this song is about Sun (and Steel) so here you go! 🤘🏽See below the amazing new features we have added to Prowler 3.3.0 🔥Sun and Steel🔥

New features to highlight in this version:

🏷️ Resource Tags everywhere:

• Now all findings outputs like HTML, CSV and JSON for AWS provider contains every resource tags.
  

⚖️ Compliance everywhere:

• Now all findings in outputs like HTML, CSV and JSON contains any security framework related to the finding.
  

🛡️ Security Hub integration with compliance from Prowler:

• All findings sent to Security Hub include their compliance information and all frameworks that they belongs to. This allow user to filter by Compliance Associated Standards ID and others and take advantage of all new supported frameworks in Prowler:
  

📊 New inventory output include regions:

• When running Prowler Quick Inventory (prowler -i) the output is as nice as this one:

✅ 3 new checks:

• s3_bucket_level_public_access_block
• rds_instance_transport_encrypted - this is valid so far only for Postgresql and MS SQL Server
• cloudwatch_log_group_no_secrets_in_logs

What's Changed:

• feat(templates): New versions of issues and fr templates by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2072
• feat(tags): add resource tags by @sergargar in https://github.com/prowler-cloud/prowler/pull/2020
• feat(s3_bucket_level_public_access_block): new check by @sergargar in https://github.com/prowler-cloud/prowler/pull/1953
• feat(rds_instance_transport_encrypted): add new check by @sergargar in https://github.com/prowler-cloud/prowler/pull/1963
• feat(quick_inventory): add regions to inventory table by @sergargar in https://github.com/prowler-cloud/prowler/pull/2026
• feat(new_check): cloudwatch_log_group_no_secrets_in_logs by @Fennerr in https://github.com/prowler-cloud/prowler/pull/1980
• feat(lambda_cloudtrail check): improved logic and status extended by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2092
• feat(inventory): add tags to quick inventory by @sergargar in https://github.com/prowler-cloud/prowler/pull/2051
• feat(encryption): add new encryption category by @sergargar in https://github.com/prowler-cloud/prowler/pull/1999
• feat(dispatch): add tag info to dispatch by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2002
• feat(compliance): add compliance field to HTML, CSV and JSON outputs including frameworks and reqs by @sergargar in https://github.com/prowler-cloud/prowler/pull/2060
• feat(SecurityHub): add compliance details to Security Hub findings by @sergargar in https://github.com/prowler-cloud/prowler/pull/2100

Fixes:

• fix(windows-path): --list-services bad split by @garym-krrv in https://github.com/prowler-cloud/prowler/pull/2028
• fix(ulimit): handle low ulimit OSError by @sergargar in https://github.com/prowler-cloud/prowler/pull/2042
• fix(ulimit check): test only when platform is not windows by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2094
• fix(quick inventory): add non-tagged s3 buckets to inventory by @sergargar in https://github.com/prowler-cloud/prowler/pull/2041
• fix(providers): Move provider's logic outside main by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2043
• fix(iam): pydantic migration and reformat logic service by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2010
• fix(head): Pass head commit to dispatch action by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2022
• fix(emr): solve emr_cluster_publicly_accesible error by @sergargar in https://github.com/prowler-cloud/prowler/pull/2086
• fix(emr): KeyError EmrManagedSlaveSecurityGroup by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2000
• fix(ec2_securitygroup_allow_wide_open_public_ipv4): correct check title by @sergargar in https://github.com/prowler-cloud/prowler/pull/2101
• fix(ec2): avoid terminated instances by @sergargar in https://github.com/prowler-cloud/prowler/pull/2063
• fix(compliance): add check to 2.1.5 CIS by @sergargar in https://github.com/prowler-cloud/prowler/pull/2077
• fix(cloudwatch): solve inexistent filterPattern error by @sergargar in https://github.com/prowler-cloud/prowler/pull/2087
• fix(cloudtrail): list tags only in owned trails by @sergargar in https://github.com/prowler-cloud/prowler/pull/2025
• fix(check): change cloudformation_outputs_find_secrets name by @sergargar in https://github.com/prowler-cloud/prowler/pull/2027
• fix(bug_report): typo in bug reporting template by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2078
• fix(bug_report): Update wording by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2074
• fix(awslambdacloudtrail): include advanced event and all lambdas in check by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/1994
• fix(actions): fixed dispatch commit message by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/2023
• fix(actions): Typo push should be true by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2019
• fix(actions): Stop using github storage by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2016

Documentation and other updates

• chore(docs): update readme with new ECR alias by @toniblyx in https://github.com/prowler-cloud/prowler/pull/2079
• chore(docs): Corrected spelling mistake in multiacount by @alexnelsone in https://github.com/prowler-cloud/prowler/pull/2056
• chore(docs): Add brew and github installation to quick start by @toniblyx in https://github.com/prowler-cloud/prowler/pull/1991
• chore(release): update Prowler Version to 3.2.4 by @sergargar in https://github.com/prowler-cloud/prowler/pull/1988
• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/2095
• chore(poetry): add poetry checks to pre-commit by @sergargar in https://github.com/prowler-cloud/prowler/pull/2040
• chore(metadata): remove tags from metadata by @sergargar in https://github.com/prowler-cloud/prowler/pull/1998
• chore(iam): update prowler permissions by @sergargar in https://github.com/prowler-cloud/prowler/pull/2050
• chore(dependabot): Change to weekly by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2057
• chore(brew): bump new version to brew by @sergargar in https://github.com/prowler-cloud/prowler/pull/1990
• chore(actions): Use GHA cache by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2066
• chore(actions): Missing cache in the PR by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/2067
• build(deps-dev): bump pytest-xdist from 3.2.0 to 3.2.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2084
• build(deps-dev): bump pytest from 7.2.1 to 7.2.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2046
• build(deps-dev): bump pylint from 2.16.4 to 2.17.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2062
• build(deps-dev): bump moto from 4.1.3 to 4.1.4 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2045
• build(deps-dev): bump freezegun from 1.2.1 to 1.2.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2033
• build(deps-dev): bump flake8 from 5.0.4 to 6.0.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2012
• build(deps-dev): bump docker from 6.0.0 to 6.0.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2030
• build(deps-dev): bump coverage from 7.1.0 to 7.2.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2032
• build(deps-dev): bump black from 22.10.0 to 22.12.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2013
• build(deps-dev): bump bandit from 1.7.4 to 1.7.5 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2082
• build(deps): bump pydantic from 1.10.5 to 1.10.6 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2081
• build(deps): bump mkdocs-material from 9.1.1 to 9.1.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2080
• build(deps): bump botocore from 1.29.86 to 1.29.90 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2083
• build(deps): bump boto3 from 1.26.85 to 1.26.86 by @dependabot in https://github.com/prowler-cloud/prowler/pull/2061

New Contributors

• @garym-krrv made their first contribution in https://github.com/prowler-cloud/prowler/pull/2028
• @alexnelsone made their first contribution in https://github.com/prowler-cloud/prowler/pull/2056

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.2.4...3.3.0

Fixes

• fix(compliance): solve AWS compliance directory path by @sergargar in https://github.com/prowler-cloud/prowler/pull/1987
• fix(pypi-release.yml): create PR before replicating by @sergargar in https://github.com/prowler-cloud/prowler/pull/1986

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.2.3...3.2.4

Dependencies

• build(deps): bump colorama from 0.4.5 to 0.4.6 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1967
• build(deps): bump azure-storage-blob from 12.14.1 to 12.15.0 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1966
• build(deps): bump botocore from 1.29.74 to 1.29.78 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1968
• build(deps): bump mkdocs-material from 8.2.1 to 9.0.14 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1964
• build(deps): bump alive-progress from 2.4.1 to 3.0.1 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1965
• build(deps): bump botocore from 1.29.78 to 1.29.79 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1978
• build(deps): bump boto3 from 1.26.74 to 1.26.79 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1981

Fixes

• fix(toml): add toml dependency to pypi release action by @sergargar in https://github.com/prowler-cloud/prowler/pull/1960
• fix(kms): handle if describe_keys returns no value by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/1961
• fix(cloudfront): handle empty objects in checks by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/1962
• fix(directoryservice): tzinfo without _ by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/1971
• fix(acm): Fix issues with list-certificates by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/1970
• fix(service errors): solve EMR, VPC and ELBv2 service errors by @sergargar in https://github.com/prowler-cloud/prowler/pull/1974
• fix(action): Use PathContext to get version changes by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/1983

Chores

• chore(regions_update): Changes in regions for AWS services. by @sergargar in https://github.com/prowler-cloud/prowler/pull/1972
• chore(compliance): implements dynamic handling of available compliance frameworks by @pedromarting3 in https://github.com/prowler-cloud/prowler/pull/1977
• chore(readme): add brew stats by @sergargar in https://github.com/prowler-cloud/prowler/pull/1982
• chore(codeowners): Update team to OSS by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/1984

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.2.2...3.2.3

Chores

• chore(poetry): make python-poetry as packaging and dependency manager by @sergargar in https://github.com/prowler-cloud/prowler/pull/1935
• chore(resource-based scan): execute only applicable checks by @sergargar in https://github.com/prowler-cloud/prowler/pull/1934

Fixes

• fix(actions): add README to docker action and filter steps for releases by @sergargar in https://github.com/prowler-cloud/prowler/pull/1955
• fix(cloudtrail): Handle when the CloudTrail bucket is in another account by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/1956
• fix(key errors): solver EMR and IAM errrors by @sergargar in https://github.com/prowler-cloud/prowler/pull/1957
• fix(metadata): remove us-east-1 in remediation by @sergargar in https://github.com/prowler-cloud/prowler/pull/1958

Builds

• build(deps): bump botocore from 1.29.75 to 1.29.76 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1946
• build(deps): bump boto3 from 1.26.74 to 1.26.76 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1948

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.2.1...3.2.2

Chores

• chore(Security Hub): add --skip-sh-update by @sergargar in https://github.com/prowler-cloud/prowler/pull/1911
• chore(Security Hub): add status extended to Security Hub by @sergargar in https://github.com/prowler-cloud/prowler/pull/1921
• chore(secrets): Improve the status_extended with more information by @Fennerr in https://github.com/prowler-cloud/prowler/pull/1937
• chore(iam_disable_N_days_credentials): improve checks logic by @sergargar in https://github.com/prowler-cloud/prowler/pull/1923

Fixes

• fix(cloudtrail_logs_s3_bucket_access_logging_enabled): cloudtrail s3 bucket logging by @n4ch04 in https://github.com/prowler-cloud/prowler/pull/1902
• fix(codebuild): Handle endTime in builds by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/1900
• fix(iam-credentials-expiration): IAM password policy expires passwords fix by @congon4tor in https://github.com/prowler-cloud/prowler/pull/1903
• fix(compliance): Set Version as optional and fix list by @jfagoagas in https://github.com/prowler-cloud/prowler/pull/1899
• fix(ecs_task_definitions_no_environment_secrets): dump_env_vars is reintialised by @Fennerr in https://github.com/prowler-cloud/prowler/pull/1922
• fix(quick_inventory): handle ApiGateway resources by @Fennerr in https://github.com/prowler-cloud/prowler/pull/1924
• fix(iam_rotate_access_key_90_days): check only active access keys by @Fennerr in https://github.com/prowler-cloud/prowler/pull/1929
• fix(services): solve errors in EMR, RDS, S3 and VPC services by @sergargar in https://github.com/prowler-cloud/prowler/pull/1913
• fix(regions): add unique branch name by @sergargar in https://github.com/prowler-cloud/prowler/pull/1941
• fix(errors): handle errors when S3 buckets or EC2 instances are deleted by @sergargar in https://github.com/prowler-cloud/prowler/pull/1942
• fix(cloudwatch): allow " in regex patterns by @sergargar in https://github.com/prowler-cloud/prowler/pull/1943

Dependencies

• build(deps-dev): bump pylint from 2.16.1 to 2.16.2 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1896
• build(deps-dev): bump moto from 4.1.2 to 4.1.3 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1939
• build(deps): bump boto3 from 1.26.51 to 1.26.69 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1897
• build(deps): bump botocore from 1.29.69 to 1.29.70 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1898
• build(deps): bump boto3 from 1.26.69 to 1.26.70 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1908
• build(deps): bump botocore from 1.29.70 to 1.29.71 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1909
• build(deps): bump boto3 from 1.26.70 to 1.26.71 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1920
• build(deps): bump pydantic from 1.10.4 to 1.10.5 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1918
• build(deps): bump botocore from 1.29.71 to 1.29.72 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1919
• build(deps): bump boto3 from 1.26.71 to 1.26.72 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1925
• build(deps): bump botocore from 1.29.72 to 1.29.73 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1926
• build(deps): bump botocore from 1.29.73 to 1.29.74 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1932
• build(deps): bump boto3 from 1.26.72 to 1.26.74 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1933
• build(deps): bump botocore from 1.29.74 to 1.29.75 by @dependabot in https://github.com/prowler-cloud/prowler/pull/1938

Full Changelog: https://github.com/prowler-cloud/prowler/compare/3.2.0...3.2.1