Prowler-cloud

_Tell me why I had to be a powerslave
I don't wanna die, I'm a god
Why can't I live on?
When the life giver dies
All around is laid waste
And in my last hour
I'm a slave to the power of death_

[Powerslave](https://www.youtube.com/watch?v=4IgoitlgZOI&list=OLAK5uy_n1vVcWSfAAGrOb-ghvfZ7cpp-kUDsRhL0) was the fifth studio album by Iron Maiden, released on 3 September 1984. 🎸 Fast forward 40 years and 3 months later, we are thrilled to announce the release of **Prowler 5.0** a.k.a. **Powerslave** — our most advanced and comprehensive release to date. Powerslave, also the seventh song on that iconic album, was written by Bruce Dickinson and explores an Egyptian pharaoh's wondering why he has to die, we know that is exactly what we think about Open Source, as soon as it is released, a piece of Open Source software will never die. 🌟

**Prowler 5.0.0 - Powerslave** is meant to be a **game changer** 🕹️ in the Cloud Security space as it comes with many new and needed features for our community of users and customers. If we want the cloud adoption to keep growing, we need more Open Source software to help gain confidence in the cloud with open, agnostic and transparent tools, that is what we call of the **Open Cloud Security movement**. 🌐

<img width="1694" alt="prowler5overview" src="https://github.com/user-attachments/assets/34609988-f08f-45cd-9254-aabf5501053b">

---

🎉 What's New?

🖥️ Enhanced UI, API, SDK, and Persistent Storage
- A brand-new **UI component** to unify all scans and drill down into findings and more.
- Robust **APIs** to solve a variety of use cases.
- **SDKs** for seamless integration and automation.
- **Persistent storage** for reporting, ensuring that your security insights are comprehensive and always accessible.

🔄 Continuous Monitoring and One-Time Assessments
- Support for both **continuous monitoring** and **ad-hoc security assessments**.
- Why settle for one-time assessments when you can stay continuously protected? 🛡️

📚 Expanded Detection and Remediation Control Framework
- Over **1,000 security controls** across AWS, Azure, Google Cloud, and Kubernetes.
- Numerous **remediation options** to secure your cloud infrastructure effectively.

🤖 AI-Driven Control Creation
- Leveraging **artificial intelligence** to automatically generate new detection checks and remediations.
- Stay ahead of the latest threats with cutting-edge security measures. ⚡

---

💾 Get Started

From today, you can:
- Use the **Prowler platform on-premises** by downloading and running it yourself. As usual, using just the powerful CLI with the same output formats as always (`pipx install prowler`), or for the whole platform together with new components, just run `docker compose up -d` from the root folder of Prowler repo, open https://localhost:3000, add your user and start making your cloud secure.
- Or use all in one place, **Prowler as a Cloud Service** managed by us 🌩️ Visit [prowler.com](http://prowler.com/) and sign up for 15 days free and let us know what do you think! 🗨️

---

🔮 What’s Next?

We're continuously adding new features! Keep track of upcoming updates here: [roadmap.prowler.com](https://roadmap.prowler.com/) 🛠️

Join us on this journey to revolutionize Open Cloud Security. 🌟

What's Changed
Fixes
* fix(aws): check AWS Owned keys in `firehose_stream_encrypted_at_rest` by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6120
* fix(aws): get firewall manager managed rule groups by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6123
* fix(aws): set IAM identity as resource in threat detection by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6117
* fix(aws): set same severity for EC2 IMDSv2 checks by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6103
* fix(backup): modify list recovery points call by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6057
* fix(compliance_tables): add correct values for findings by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6126
* fix(gcp): make sure default project is active by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6112
* fix(tests): use `datetime.datetime.now()` in GCP `kms_key_rotation_enabled` by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6083
Chores
* chore(container): upload v4 with correct tags by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/6093
* chore(containers): support for v4.6 branch by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6084
* chore(dependabot): Update for UI and v4 by prowler-bot in https://github.com/prowler-cloud/prowler/pull/6087
* chore(deps): bump boto3 from 1.35.66 to 1.35.77 by dependabot in https://github.com/prowler-cloud/prowler/pull/6107
* chore(deps): bump botocore from 1.35.66 to 1.35.76 by dependabot in https://github.com/prowler-cloud/prowler/pull/6071
* chore(deps): bump botocore from 1.35.76 to 1.35.77 by dependabot in https://github.com/prowler-cloud/prowler/pull/6100
* chore(deps): bump microsoft-kiota-abstractions from 1.6.2 to 1.6.6 by dependabot in https://github.com/prowler-cloud/prowler/pull/6080
* chore(deps): bump msgraph-sdk from 1.12.0 to 1.14.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/6074
* chore(deps): bump slack-sdk from 3.33.4 to 3.33.5 by dependabot in https://github.com/prowler-cloud/prowler/pull/6077
* chore(deps): bump trufflesecurity/trufflehog from 3.84.1 to 3.85.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/6067
* chore(deps-dev): bump bandit from 1.7.10 to 1.8.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/6072
* chore(deps-dev): bump coverage from 7.6.7 to 7.6.9 by dependabot in https://github.com/prowler-cloud/prowler/pull/6076
* chore(deps-dev): bump mkdocs-material from 9.5.45 to 9.5.48 by dependabot in https://github.com/prowler-cloud/prowler/pull/6078
* chore(deps-dev): bump pylint from 3.3.1 to 3.3.2 by dependabot in https://github.com/prowler-cloud/prowler/pull/6099
* chore(deps-dev): bump pytest from 8.3.3 to 8.3.4 by dependabot in https://github.com/prowler-cloud/prowler/pull/6075
* chore(deps-dev): bump vulture from 2.13 to 2.14 by dependabot in https://github.com/prowler-cloud/prowler/pull/6069
* chore(version): update Prowler version by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5969


**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/4.6.1...4.6.2

What's Changed
Fixes
* fix(aws): exclude threat detection checks if category not present by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5934
* fix(azure): containerregistry_not_publicly_accesible is not accurate by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5966
* fix(gcp): use session credentials to check if API is active by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5936
* fix(k8s): handle Kubernetes kubeconfig content correctly by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5967
* fix(list_by_service): execute lambda if requested by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5931
* fix(rds): add default key value to RDS event by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5965


**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/4.6.0...4.6.1

_And as you look all around at the world in dismay
What do you see, do you think we have learned?
Not if you're taking a look at the war-torn affray
Out in the streets where the babies are burnt_

**Prowler 4.6.0 - Blood Brothers** 🚀 has arrived! Packed with exciting new AWS checks, fixers, and expanded Azure coverage, this release takes your cloud security to the next level. 🎸 While you explore, enjoy the classic Iron Maiden [song](https://www.youtube.com/watch?v=uclIFQHcb-w) that inspired this release.

**This release is dedicated to the honor and memory of our contributor and friend Javier Hijas who helped Prowler and the Cloud Security Community with his talent over the last years, you will be always in our hearts Javi.** Also, special thanks to our amazing new contributors: drewkerrigan, metahertz, and vicferpoy! ⭐ We’d also like to thank normanecg for all ENS features, sansns, StylusFrost, garym-krrv, and thomscode for their continued efforts and valuable PRs that keep improving Prowler! 🙌🚀

New features to highlight in this version

AWS
🔒 IAM Root Credentials Management
AWS recently introduced the ability to centrally manage root credentials with AWS Organizations ([read more](https://aws.amazon.com/blogs/aws/centrally-managing-root-access-for-customers-using-aws-organizations/)). Prowler now supports this feature with the new check `iam_root_credentials_management_enabled`, letting you verify whether root credentials management is enabled in your AWS account.
> Try it out: `prowler aws -c iam_root_credentials_management_enabled`


🧑‍🔧 6 New Fixers!
Prowler now includes 6 new fixers to help you automatically remediate misconfigurations in AWS services like DocumentDB, EC2, KMS, Neptune, and RDS.
Run a specific fixer with:

prowler aws -c <check_id> --fixer

> See all the new available fixers with `prowler aws --list-fixers`

1. documentdb_cluster_public_snapshot
2. ec2_ebs_public_snapshot
3. kms_cmk_not_deleted_unintentionally
4. neptune_cluster_public_snapshot
5. rds_instance_no_public_access
6. rds_snapshots_public_access


🚀 13 New AWS Checks Across 10 Services!
We’ve significantly expanded AWS coverage with 13 new checks, enhancing your security and compliance for services like AppSync, DMS, Firehose, Glue, Kinesis, and IAM.
> See all the new available checks with `prowler aws --list-checks`


1. appsync_field_level_logging_enabled
2. appsync_graphql_api_no_api_key_authentication
3. dms_endpoint_redis_in_transit_encryption_enabled
4. dms_replication_task_source_logging_enabled
5. dms_replication_task_target_logging_enabled
6. firehose_stream_encrypted_at_rest
7. glue_etl_jobs_logging_enabled
8. iam_root_credentials_management_enabled
9. kinesis_stream_data_retention_period
10. memorydb_cluster_auto_minor_version_upgrades
11. mq_broker_not_publicly_accessible
12. servicecatalog_portfolio_shared_within_organization_only
13. storagegateway_gateway_fault_tolerant


⚙️ Improved Handling of Unknown Resources
Prowler now avoids creating mocked resource ARNs or IDs for non-existent resources. Instead, it will generate a standardized "Unknown" ARN and ID using the following patterns:
- Unknown resource ARN: `arn:<partition>:<service>:<region>:<account-id>:resource-type/unknown`
- Unknown resource ID: `resource-type/unknown`

Azure
💪🏼 New Azure AI Search Check
Thanks to our great contributor StylusFrost, Prowler now includes Azure AI Search coverage with the new check`aisearch_service_not_publicly_accessible`
> Give it a try by scanning the Azure Container Registry with `prowler azure --service aisearch`

🇪🇸📜 Added ENS Compliance Framework
Thanks to normanecg, Prowler now supports the ENS RD2022 compliance framework for Azure, ensuring enhanced compliance for Spanish organizations.
> Give it a try with `prowler azure --compliance ens_rd2022_aws`

GCP
🇪🇸📜 New ENS Compliance Framework
We’re excited to announce that Prowler now includes the ENS RD2022 compliance framework for GCP, courtesy of normanecg!
> Give it a try with `prowler gcp --compliance ens_rd2022_aws`

**🔧 Other issues and bug fixes solved for all the cloud providers**

What's Changed
Features
* feat(appsync): add new check `appsync_field_level_logging_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5602
* feat(appsync): add new check `appsync_graphql_apis_no_api_key_authentication` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5591
* feat(appsync): Add new service AppSync by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5589
* feat(aws): add MemoryDB service by sansns in https://github.com/prowler-cloud/prowler/pull/5546
* feat(aws): add new check `iam_root_credentials_management_enabled` by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5801
* feat(aws): add new service `firehose` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5620
* feat(aws): get regions by partition by pedrooot in https://github.com/prowler-cloud/prowler/pull/5748
* feat(aws): Update check metadata with `logging` category by sansns in https://github.com/prowler-cloud/prowler/pull/5639
* feat(aws): Update check metadata with `redudancy` category by sansns in https://github.com/prowler-cloud/prowler/pull/5640
* feat(azure): Add get_regions method for provider by vicferpoy in https://github.com/prowler-cloud/prowler/pull/5774
* feat(azure): AI Search service check not publicly accesible by StylusFrost in https://github.com/prowler-cloud/prowler/pull/5846
* feat(compliance): add ENSRD2022 for Azure and GCP by pedrooot in https://github.com/prowler-cloud/prowler/pull/5746
* feat(dms): add new check `dms_endpoint_redis_tls_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5583
* feat(dms): add new check `dms_replication_task_source_logging_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5627
* feat(dms): add new check `dms_replication_task_target_logging_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5631
* feat(documentdb): add new fixer `documentdb_cluster_public_snapshot_fixer` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5759
* feat(ec2): add new fixer `ec2_ebs_public_snapshot_fixer` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5825
* feat(firehose): add new check `firehose_stream_encrypted_at_rest` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5635
* feat(gcp): add get regions method by pedrooot in https://github.com/prowler-cloud/prowler/pull/5756
* feat(jira): add jira integration by pedrooot in https://github.com/prowler-cloud/prowler/pull/5629
* feat(kinesis): add new check `kinesis_stream_data_retention_period` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5547
* feat(kms): add new fixer `kms_cmk_not_deleted_unintentionally_fixer` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5842
* feat(mq): add `mq_broker_not_publicly_accessible` check by sansns in https://github.com/prowler-cloud/prowler/pull/5604
* feat(neptune): add new fixer `neptune_cluster_public_snapshot_fixer` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5749
* feat(prowler-check-kreator): `ProwlerChecKreator` first version by puchy22 in https://github.com/prowler-cloud/prowler/pull/5099
* feat(rds): add new fixer `rds_instance_no_public_access_fixer` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5794
* feat(rds): add new fixer `rds_snapshots_public_access_fixer` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5773
* feat(rds): add `rds_cluster_protected_by_backup_plan` check by sansns in https://github.com/prowler-cloud/prowler/pull/5638
* feat(servicecatalog): Add new check `servicecatalog_portfolio_shared_within_organization_only` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5632
* feat(servicecatalog): Add new service servicecatalog by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5618
* feat(sgw): add `storagegateway_fault_tolerance` check by sansns in https://github.com/prowler-cloud/prowler/pull/5570
Fixes
* fix(aws): exclude member accounts in IAM Root Credentials check by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5813
* fix(aws): remove `cloudwatch_log_group_no_critical_pii_in_logs` check by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5736
* fix(aws): update EKS check in compliance frameworks by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5672
* fix(compliance): CIS details for new EFS Controls by garym-krrv in https://github.com/prowler-cloud/prowler/pull/5858
* fix(compliance): use subscriptionid instead of name for azure cis by pedrooot in https://github.com/prowler-cloud/prowler/pull/5786
* fix(connection): return Connection on generic exception by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5636
* fix(docker): add g++ to Dockerfile for presidio-analyzer compatibility by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5645
* fix(docs): provider typo by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5713
* fix(docs): Update misc tutorial categories example by drewkerrigan in https://github.com/prowler-cloud/prowler/pull/5644
* fix(ec2): add default value to Name key for image information by puchy22 in https://github.com/prowler-cloud/prowler/pull/5747
* fix(ec2): unique finding per Security Group in high risk ports check by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5697
* fix(gcp): do not require organization id to get projects by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5637
* fix(gcp): scan only ACTIVE projects by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5743
* fix(guardduty): fix `guardduty_is_enabled_fixer` test by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5668
* fix(iam): use `get` to get the key by pedrooot in https://github.com/prowler-cloud/prowler/pull/5785
* fix(kubernetes): filter apiGroup in permission checks by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5829
* fix(kubernetes): validate seccomp profile at pod and container levels by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5814
* fix(lock): Use detect-secrets from package not repo by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5656
* fix(mutelist): set arguments while loading providers by thomscode in https://github.com/prowler-cloud/prowler/pull/5653
* fix(rds): fix typo error in `rds_snapshots_public_access_fixer` test by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5826
* fix(severity): add enum for severity values by pedrooot in https://github.com/prowler-cloud/prowler/pull/5856
* fix(wafv2): only list resources for regional Web ACLs by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5811
Chores
* chore(aws): deprecate `glue_etl_jobs_logging_enabled` check by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5670
* chore(deps): bump aiohttp from 3.10.10 to 3.10.11 by dependabot in https://github.com/prowler-cloud/prowler/pull/5815
* chore(deps): bump alive-progress from 3.1.5 to 3.2.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5689
* chore(deps): bump azure-keyvault-keys from 4.9.0 to 4.10.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5660
* chore(deps): bump azure-mgmt-containerservice from 32.0.0 to 32.1.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5664
* chore(deps): bump azure-mgmt-containerservice from 32.1.0 to 33.0.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5706
* chore(deps): bump azure-mgmt-cosmosdb from 9.6.0 to 9.7.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5834
* chore(deps): bump azure-mgmt-network from 27.0.0 to 28.0.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5703
* chore(deps): bump azure-mgmt-resource from 23.1.1 to 23.2.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5684
* chore(deps): bump azure-storage-blob from 12.23.1 to 12.24.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5767
* chore(deps): bump boto3 from 1.35.29 to 1.35.55 by dependabot in https://github.com/prowler-cloud/prowler/pull/5685
* chore(deps): bump boto3 from 1.35.55 to 1.35.57 by dependabot in https://github.com/prowler-cloud/prowler/pull/5719
* chore(deps): bump boto3 from 1.35.57 to 1.35.58 by dependabot in https://github.com/prowler-cloud/prowler/pull/5741
* chore(deps): bump boto3 from 1.35.58 to 1.35.60 by dependabot in https://github.com/prowler-cloud/prowler/pull/5770
* chore(deps): bump boto3 from 1.35.60 to 1.35.63 by dependabot in https://github.com/prowler-cloud/prowler/pull/5809
* chore(deps): bump boto3 from 1.35.63 to 1.35.64 by dependabot in https://github.com/prowler-cloud/prowler/pull/5835
* chore(deps): bump boto3 from 1.35.64 to 1.35.65 by dependabot in https://github.com/prowler-cloud/prowler/pull/5853
* chore(deps): bump boto3 from 1.35.65 to 1.35.66 by dependabot in https://github.com/prowler-cloud/prowler/pull/5860
* chore(deps): bump botocore from 1.35.29 to 1.35.55 by dependabot in https://github.com/prowler-cloud/prowler/pull/5663
* chore(deps): bump botocore from 1.35.55 to 1.35.56 by dependabot in https://github.com/prowler-cloud/prowler/pull/5683
* chore(deps): bump botocore from 1.35.56 to 1.35.57 by dependabot in https://github.com/prowler-cloud/prowler/pull/5702
* chore(deps): bump botocore from 1.35.57 to 1.35.58 by dependabot in https://github.com/prowler-cloud/prowler/pull/5721
* chore(deps): bump botocore from 1.35.58 to 1.35.59 by dependabot in https://github.com/prowler-cloud/prowler/pull/5740
* chore(deps): bump botocore from 1.35.59 to 1.35.60 by dependabot in https://github.com/prowler-cloud/prowler/pull/5765
* chore(deps): bump botocore from 1.35.60 to 1.35.61 by dependabot in https://github.com/prowler-cloud/prowler/pull/5780
* chore(deps): bump botocore from 1.35.61 to 1.35.63 by dependabot in https://github.com/prowler-cloud/prowler/pull/5797
* chore(deps): bump botocore from 1.35.63 to 1.35.64 by dependabot in https://github.com/prowler-cloud/prowler/pull/5818
* chore(deps): bump botocore from 1.35.64 to 1.35.65 by dependabot in https://github.com/prowler-cloud/prowler/pull/5836
* chore(deps): bump botocore from 1.35.65 to 1.35.66 by dependabot in https://github.com/prowler-cloud/prowler/pull/5850
* chore(deps): bump codecov/codecov-action from 4 to 5 by dependabot in https://github.com/prowler-cloud/prowler/pull/5783
* chore(deps): bump dash from 2.18.1 to 2.18.2 by dependabot in https://github.com/prowler-cloud/prowler/pull/5682
* chore(deps): bump google-api-python-client from 2.147.0 to 2.151.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5661
* chore(deps): bump google-api-python-client from 2.151.0 to 2.152.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5742
* chore(deps): bump google-api-python-client from 2.152.0 to 2.153.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5763
* chore(deps): bump google-api-python-client from 2.153.0 to 2.154.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5851
* chore(deps): bump microsoft-kiota-abstractions from 1.3.3 to 1.6.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5662
* chore(deps): bump microsoft-kiota-abstractions from 1.6.0 to 1.6.2 by dependabot in https://github.com/prowler-cloud/prowler/pull/5720
* chore(deps): bump msgraph-sdk from 1.8.0 to 1.11.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5687
* chore(deps): bump msgraph-sdk from 1.11.0 to 1.12.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5722
* chore(deps): bump slack-sdk from 3.33.1 to 3.33.3 by dependabot in https://github.com/prowler-cloud/prowler/pull/5688
* chore(deps): bump slack-sdk from 3.33.3 to 3.33.4 by dependabot in https://github.com/prowler-cloud/prowler/pull/5837
* chore(deps): bump trufflesecurity/trufflehog from 3.83.2 to 3.83.3 by dependabot in https://github.com/prowler-cloud/prowler/pull/5647
* chore(deps): bump trufflesecurity/trufflehog from 3.83.3 to 3.83.4 by dependabot in https://github.com/prowler-cloud/prowler/pull/5692
* chore(deps): bump trufflesecurity/trufflehog from 3.83.4 to 3.83.5 by dependabot in https://github.com/prowler-cloud/prowler/pull/5708
* chore(deps): bump trufflesecurity/trufflehog from 3.83.5 to 3.83.6 by dependabot in https://github.com/prowler-cloud/prowler/pull/5723
* chore(deps): bump trufflesecurity/trufflehog from 3.83.6 to 3.83.7 by dependabot in https://github.com/prowler-cloud/prowler/pull/5819
* chore(deps): bump trufflesecurity/trufflehog from 3.83.7 to 3.84.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5862
* chore(deps): bump trufflesecurity/trufflehog from 3.84.0 to 3.84.1 by dependabot in https://github.com/prowler-cloud/prowler/pull/5870
* chore(deps-dev): bump black from 24.8.0 to 24.10.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5667
* chore(deps-dev): bump coverage from 7.6.1 to 7.6.4 by dependabot in https://github.com/prowler-cloud/prowler/pull/5686
* chore(deps-dev): bump coverage from 7.6.4 to 7.6.6 by dependabot in https://github.com/prowler-cloud/prowler/pull/5793
* chore(deps-dev): bump coverage from 7.6.6 to 7.6.7 by dependabot in https://github.com/prowler-cloud/prowler/pull/5795
* chore(deps-dev): bump mkdocs-git-revision-date-localized-plugin from 1.2.9 to 1.3.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5704
* chore(deps-dev): bump mkdocs-material from 9.5.39 to 9.5.44 by dependabot in https://github.com/prowler-cloud/prowler/pull/5659
* chore(deps-dev): bump mkdocs-material from 9.5.44 to 9.5.45 by dependabot in https://github.com/prowler-cloud/prowler/pull/5852
* chore(deps-dev): bump pytest-cov from 5.0.0 to 6.0.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5666
* chore(deps-dev): bump pytest-randomly from 3.15.0 to 3.16.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/5705
* chore(deps-dev): bump safety from 3.2.8 to 3.2.9 by dependabot in https://github.com/prowler-cloud/prowler/pull/5681
* chore(deps-dev): bump vulture from 2.12 to 2.13 by dependabot in https://github.com/prowler-cloud/prowler/pull/5665
* chore(ec2): add name from image information to status_extended by puchy22 in https://github.com/prowler-cloud/prowler/pull/5755
* chore(iam): add exception for public policy in EKS service by puchy22 in https://github.com/prowler-cloud/prowler/pull/4759
* chore(iam): add missing service catalog permissions by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5816
* chore(labeler): Add compliance by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5790
* chore(README): update summary table by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5633
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5655
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5694
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5709
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5732
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5744
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5771
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5784
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5802
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5824
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5839
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5863
* chore(version): update Prowler version by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5642
* docs(aws): improve docstrings by pedrooot in https://github.com/prowler-cloud/prowler/pull/5714
* docs(azure): improve docstrings by pedrooot in https://github.com/prowler-cloud/prowler/pull/5715
* docs(gcp): improve docstrings by pedrooot in https://github.com/prowler-cloud/prowler/pull/5716
* docs(kubernetes): improve docstrings for methods by pedrooot in https://github.com/prowler-cloud/prowler/pull/5717
* docs: Update `contact.md` with new Slack join URL by metahertz in https://github.com/prowler-cloud/prowler/pull/5671
* refactor(arn): fine tune arn and resources id for unknown values by pedrooot in https://github.com/prowler-cloud/prowler/pull/5841
* refactor(arn): refactor arn for unknown resources by pedrooot in https://github.com/prowler-cloud/prowler/pull/5712
* refactor(aws): Rename get_regions and validate partition by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5772
* refactor(azure): get locations with self session by pedrooot in https://github.com/prowler-cloud/prowler/pull/5751

New Contributors
* drewkerrigan made their first contribution in https://github.com/prowler-cloud/prowler/pull/5644
* metahertz made their first contribution in https://github.com/prowler-cloud/prowler/pull/5671
* vicferpoy made their first contribution in https://github.com/prowler-cloud/prowler/pull/5774

**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/4.5.3...4.6.0

What's Changed
* chore(ec2): add name from image information to status_extended by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5758
* chore(version): update Prowler version by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5737
* fix(ec2): add default value to Name key for image information by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5754
* fix(gcp): scan only ACTIVE projects by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5752


**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/4.5.2...4.5.3

Important Changes

* fix(aws): remove `cloudwatch_log_group_no_critical_pii_in_logs` check by MrCloudSec in https://github.com/prowler-cloud/prowler/pull/5735
- This check has been removed due to dependencies on `presidio-analyzer`, which loads NLP modules and PII recognizers from external sources not included in Prowler’s dependencies. This approach is unsuitable for offline environments. Additionally:
- Dependencies are unavailable on PyPI, complicating installation.
- The NLP module (`en-core-web-lg`) is large (~400MB), and we need to assess whether this module is necessary.
- The installation process adds excessive output to the terminal UI, impacting readability.

*We plan to reintroduce this check with dependencies fully defined and verified.*


Fixes

* fix(ec2): Unique finding per Security Group in high-risk ports check by prowler-bot in [5698](https://github.com/prowler-cloud/prowler/pull/5698)

Chores

* chore(version): Updated Prowler version by MrCloudSec in [5680](https://github.com/prowler-cloud/prowler/pull/5680)

**Full Changelog**: [4.5.1...4.5.2](https://github.com/prowler-cloud/prowler/compare/4.5.1...4.5.2)