Prowler-cloud

New features:
* Refactored code:
* reduced number of lines in prowler main script and add `includes` folder with parts to easily find and manage all components
* dedicated folder for `checks`, a check per file,
* same for `groups` of checks, now we can create custom groups and run Prowler against your custom group (for example only the checks that your company needs).
* moved Dockerfile to `utils` folder.
* moved IAM policy additions to `iam` folder
* Output changed `PASS` and `FAIL` instead of `OK` and `WARNING` messages displayed.
* Option `-g <group_id>`: run specific group from the existing or new one
* Option `-b`: hide banner
* Check whitelisting: thanks to the new groups management, you can create your own checks based on your needs.
* Custom checks: now it is easier to add a new check, just create your check based on the sample one and add it to a group, or create your own group.
* Added version to the banner and changed description
* Added new check `extra723` that looks for public RDS snapshots (single and cluster)

Improvements:
* option `-l` now shows all groups not only default ones, with all its checks title.
* `check73` now doees the S3 check in parallel thanks to vsMeecles and Jonathan Glass
* changed `!/bin/bash` to `!/usr/bin/env bash` 182 thanks to doshitan
* `check28` 181 thanks to doshitan
* `check41` and `check44` 180 thanks to subramani95

Fixes:
* `check22` 194 thanks to mbode
* `check717` 188 thanks to ahhh
* fixed required IAM permissions 187 thanks to rtkjbillo

Documentation:
* Added new way to create custom checks and custom groups

Special thanks to:
philipmeadows for his help and ideas on code refactoring

New features:
- New **forensics ready** group of checks: it includes existing and new ones to ensure your AWS account is ready for a deep forensic investigation if needed `prowler -c forensics-ready`
- Added option `-e` to exclude all extra checks (they may make prowler take longer to finish)
- New check `extra78` Ensure there are no Public Accessible RDS instances (Not Scored) (Not part of CIS benchmark) thanks to sidewinder12s
- New check `extra79` Check for internet facing Elastic Load Balancers (Not Scored) (Not part of CIS benchmark) thanks to sidewinder12s
- New check `extra710` Check for internet facing EC2 Instances (Not Scored) (Not part of CIS benchmark) thanks to sidewinder12s
- New check `extra711` Check for Publicly Accessible Redshift Clusters (Not Scored) (Not part of CIS benchmark) thanks to sidewinder12s
- New check `extra712` Check if Amazon Macie is enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra713` Check if GuardDuty is enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra714` Check if CloudFront distributions have logging enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra715` Check if Elasticsearch Service domains have logging enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra716` Check if Elasticsearch Service domains allow open access (Not Scored) (Not part of CIS benchmark)
- New check `extra717` Check if Elastic Load Balancers have logging enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra718` Check if S3 buckets have server access logging enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra719` Check if Route53 hosted zones are logging queries to CloudWatch Logs (Not Scored) (Not part of CIS benchmark)
- New check `extra720` Check if Lambda functions invoke API operations are being recorded by CloudTrail (Not Scored) (Not part of CIS benchmark)
- New check `extra721` Check if Redshift cluster has audit logging enabled (Not Scored) (Not part of CIS benchmark)
- New check `extra722` Check if API Gateway has logging enabled (Not Scored) (Not part of CIS benchmark)

Fixes:
- Typo in extra72 by neonbunny
- check114 by subramani95

Improvements:
- PR 150 Load of authentication credentials
- PR 164 check31 by subramani95
- PR 167 OSTYPE handling to support Alpine docker containers

Documentation:
- Added section https://github.com/Alfresco/prowler#forensics-ready-checks to README
- Added all new extra checks to README

Special thanks to:
sidewinder12s subramani95 neonbunny and SubatomicHero.

New features:
- More extra checks to find public AMIs, ECR repos and EC2 snapshots
- New flag `-l` to list all available checks
- New Dockerfile to create your own image with prowler

Fixes:
- Issue 133 text fix in check36
- Issue 137 fix in check114
- Issue 136 fix in check113
- Issue 135 fix regarding [[]] statements
- Issue 134 fix in check124
- Issue 131 fix in check312
- Issue 130 fix in check12
- Issue 129 fix in checks section 3

Improvements:
- Refactored title and checks id in the script

Documentation:
- Added section how to add Custom Checks to README
- Added section Third Party Integrations to README

Thanks to st33v wassies tomas-milata sente pbugnion

- New features
101 Added -n option to show check numbers easier to sort, ie. 1.02 instead of 1.2.
- Improvements
83 better check73 checking bucket permissions (ACL and Policies)
81 Improved extra73 - S3 bucket permissions
84 Improved and error handling for check15 and check111, improved check41
- Fixes
82 Fixed bug in extra73 for buckets in EU (eu-west-1)
86 Fix LICENSE
87 Fix temp file issue
91 Broken sed expression & typos
92 Fix scored output
95 Added --max-items option to extra72
97 Removed printCurrentDate() and added current date to banner
98 Updated infoReferenceLong() text and moved the function call
99 Remove bit.ly reference
100 Removed printCurrentDate reference
103 Fix check14 if users contain same strings as table tittle

Thanks MrSecure neonbunny hemedga jphuynh steverigby for your help and suggestions.

- Fixes regarding SNS checks and some other small fixes
- Added CIS profile definitions (profile1 and profile2 as stated in their documentation)
- Added extra checks (extra71, extra72 and extra73 to check admins w/o MFA, Search Publicly shared EBS Snapshots and S3 buckets open to the internet)
- Improved documentation

We have updated the [OCSF](https://schema.ocsf.io/1.3.0/) output to be compatible with the v1.3.0 version. From v1.2.0 to v1.3.0 the format has the several changes, in the form of additions, changes and some breaking changes:
* Add `finding_info.created_time_dt` as a timestamp.
* Change `finding_info.created_time` from a timestamp to a unix timestamp.
* Add `finding_info.name` with the finding's resource name.
* Add `finding_info.types` with the Prowler's check type.
* Add `time_dt` as a timestamp.
* Rename `event_time` to `time` and change the format from a timestamp to a unix timestamp.
* Remove `container` object.
* Add `metadata.product.uid` with `prowler`.
* Add `metadata.profiles` with:
* `["cloud", "datetime"]` for the Cloud providers.
* `["container", "datetime"]` for the Kubernetes provider.
* Fix `type_name` with `Detection Finding: Create`.
* Fix `cloud.type` format.

**🔧 Other issues and bug fixes solved for all the cloud providers**

What's Changed
Features
* feat(apigateway): add new check `apigateway_restapi_cache_encrypted` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5448
* feat(apigateway): add new check `apigateway_restapi_tracing_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5470
* feat(athena): add new check `athena_workgroup_logging_enabled` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5468
* feat(autoscaling): add new check `autoscaling_group_elb_health_check_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5330
* feat(autoscaling): add new check `autoscaling_group_launch_configuration_no_public_ip` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5359
* feat(autoscaling): add new check `autoscaling_group_launch_configuration_requires_imdsv2` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5356
* feat(autoscaling): add new check `autoscaling_group_multiple_instance_types` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5325
* feat(autoscaling): add new check `autoscaling_group_using_ec2_launch_template` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5346
* feat(autoscaling): Add `autoscaling_group_capacity_rebalance_enabled` check by sansns in https://github.com/prowler-cloud/prowler/pull/5523
* feat(aws): add checks for Bedrock logging configuration and CloudTrail LLM Jacking detection by sergargar in https://github.com/prowler-cloud/prowler/pull/5314
* feat(aws): add DirectConnect service and checks by sansns in https://github.com/prowler-cloud/prowler/pull/5522
* feat(aws): Add Fault Tolerance Checks by sansns in https://github.com/prowler-cloud/prowler/pull/5488
* feat(aws): Add new checks `ses_identities/glue_data_catalogs/secretsmanager _not_publicly_accessible` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5471
* feat(aws): add new check `bedrock_agent_guardrail_enabled` by sergargar in https://github.com/prowler-cloud/prowler/pull/5509
* feat(aws): add new check `cloudwatch_log_group_not_publicly_accessible` by sergargar in https://github.com/prowler-cloud/prowler/pull/5495
* feat(aws): add new check `cloudwatch_log_group_no_critical_pii_in_logs` by sergargar in https://github.com/prowler-cloud/prowler/pull/5494
* feat(aws): add new check `dynamodb_accelerator_cluster_multi_az` by sansns in https://github.com/prowler-cloud/prowler/pull/5493
* feat(aws): add new check `fsx_windows_file_system_multi_az` by sansns in https://github.com/prowler-cloud/prowler/pull/5491
* feat(aws): add new check `redshift_cluster_multi_az_enabled` by sansns in https://github.com/prowler-cloud/prowler/pull/5492
* feat(aws): add new service `transfer` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5585
* feat(aws): Add static credentials authentication by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5360
* feat(aws): Update check metadata with category by sansns in https://github.com/prowler-cloud/prowler/pull/5607
* feat(azure): add authentication method from static credentials by pedrooot in https://github.com/prowler-cloud/prowler/pull/5358
* feat(azure): add provider id validation inside test_connection by pedrooot in https://github.com/prowler-cloud/prowler/pull/5391
* feat(backup): add new check `backup_recovery_point_encrypted` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5426
* feat(bedrock): add checks for guardrails configuration and log encryption by sergargar in https://github.com/prowler-cloud/prowler/pull/5385
* feat(check): add check methods by pedrooot in https://github.com/prowler-cloud/prowler/pull/5462
* feat(cloudwatch): add new check `cloudwatch_alarm_actions_alarm_state_configured` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5404
* feat(cloudwatch): add new check `cloudwatch_alarm_actions_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5416
* feat(codebuild): add new check `codebuild_project_logging_enabled` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5365
* feat(codebuild): add new check `codebuild_project_s3_logs_encrypted` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5363
* feat(codebuild): add new check `codebuild_report_group_export_encrypted` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5384
* feat(color): add `--no-color` flag by MrSecure in https://github.com/prowler-cloud/prowler/pull/5368
* feat(config): add new check `config_recorder_using_aws_service_role_config` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5357
* feat(containerregistry): add new check `containerregistry_not_publicly_accessible ` by johannes-engler-mw in https://github.com/prowler-cloud/prowler/pull/5291
* feat(containerregistry): add new check `containerregistry_uses_private_link` by johannes-engler-mw in https://github.com/prowler-cloud/prowler/pull/5375
* feat(datasync): add datasync service and check `datasync_task_logging_enabled` by AdriiiPRodri in https://github.com/prowler-cloud/prowler/pull/5444
* feat(dms): add new check `dms_endpoint_mongodb_authentication_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5578
* feat(dms): add new check `dms_endpoint_neptune_iam_authorization_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5549
* feat(ecs): add new check `ecs_service_fargate_latest_platform_version` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5258
* feat(ecs): add new check `ecs_task_set_no_assign_public_ip` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5603
* feat(ecs): Add `ecs_task_definitions_logging_block_mode` check by sansns in https://github.com/prowler-cloud/prowler/pull/5526
* feat(efs): add new check `efs_access_point_enforce_root_directory` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5277
* feat(efs): add new check `efs_access_point_enforce_user_identity` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5285
* feat(efs): add new check `efs_mount_target_not_publicly_accesible` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5275
* feat(elasticbeanstalk): add new check `elasticbeanstalk_cloudwatch_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5335
* feat(elasticbeanstalk): add new check `elasticbeanstalk_enhanced_health_reporting_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5348
* feat(elasticbeanstalk): add new check `elasticbeanstalk_managed_platform_updates_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5324
* feat(elasticbeanstalk): Add new service ElasticBeanstalk by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5322
* feat(elb): add new check `elb_desync_mitigation_mode` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5500
* feat(elb): add new check `elb_ssl_listeners_use_acm_certificate` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5424
* feat(elbv2): add `elbv2_cross_zone_load_balancing_enabled` check by sansns in https://github.com/prowler-cloud/prowler/pull/5548
* feat(elbv2): add `elbv2_nlb_tls_termination_enabled` check by sansns in https://github.com/prowler-cloud/prowler/pull/5550
* feat(eventbridge): add new check `eventbridge_global_endpoint_event_replication_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5396
* feat(exceptions): modify custom exceptions by pedrooot in https://github.com/prowler-cloud/prowler/pull/5451
* feat(fsx): add new check `fsx_file_system_copy_tags_to_backups_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5417
* feat(fsx): add new check `fsx_file_system_copy_tags_to_volumes_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5414
* feat(fsx): Add new service FSx by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5412
* feat(gcp): add provider id validation inside test_connection by pedrooot in https://github.com/prowler-cloud/prowler/pull/5381
* feat(gcp): add static credentials for gcp provider by pedrooot in https://github.com/prowler-cloud/prowler/pull/5364
* feat(gcp): add `--organization-id` flag by sergargar in https://github.com/prowler-cloud/prowler/pull/5524
* feat(glue): add check `glue_ml_transform_encrypted_at_rest` by LefterisXefteris in https://github.com/prowler-cloud/prowler/pull/5272
* feat(glue): add new check `glue_etl_jobs_logging_enabled` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5581
* feat(guardduty): add new check `guardduty_ec2_malware_protection_enabled ` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5297
* feat(guardduty): add new check `guardduty_eks_audit_log_enabled` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5293
* feat(guardduty): add new check `guardduty_eks_runtime_monitoring_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5582
* feat(guardduty): add new check `guardduty_lambda_protection_enabled` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5299
* feat(iam): add new check `iam_policy_cloudshell_admin_not_attached` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5437
* feat(k8s): Add kubeconfig content authentication by pedrooot in https://github.com/prowler-cloud/prowler/pull/5397
* feat(k8s): Add kubeconfig content static authentication by sergargar in https://github.com/prowler-cloud/prowler/pull/5370
* feat(kafka): add new check `kafka_connector_in_transit_encryption_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5577
* feat(kinesis): add new check `kinesis_stream_encrypted_at_rest` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5292
* feat(macie): add new check `macie_automated_sensitive_data_discovery_enabled` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5390
* feat(mq): add new check `mq_broker_active_deployment_mode` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5433
* feat(mq): add new check `mq_broker_auto_minor_version_upgrades` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5431
* feat(mq): add new check `mq_broker_cluster_deployment_mode` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5481
* feat(mq): add new check `mq_broker_logging_enabled` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5483
* feat(MQ): add new service `MQ` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5419
* feat(mutelist): add mute_finding method by pedrooot in https://github.com/prowler-cloud/prowler/pull/5563
* feat(networkfirewall): add new check `networkfirewall_policy_default_action_full_packets` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5284
* feat(opensearch): add new check `opensearch_domain_master_nodes_fault_tolerant` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5393
* feat(opensearch): add new check `opensearch_service_domains_fault_tolerant_data_nodes` by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5366
* feat(redshift): add new check `redshift_cluster_encrypted_at_rest` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5262
* feat(redshift): add new check `redshift_cluster_enhanced_vpc_routing` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5281
* feat(redshift): add new check `redshift_cluster_in_transit_encryption_enabled` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5271
* feat(redshift): add new check `redshift_cluster_non_default_database_name` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5283
* feat(redshift): add new check `redshift_cluster_non_default_username` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5268
* feat(s3): add new check `s3_bucket_event_notifications_enabled` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5562
* feat(s3): add new check `s3_multi_region_access_point_public_access_block` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5552
* feat(s3): add test_connection method by pedrooot in https://github.com/prowler-cloud/prowler/pull/5332
* feat(scan): add arguments by pedrooot in https://github.com/prowler-cloud/prowler/pull/5427
* feat(scan): add excluded_checks and services by pedrooot in https://github.com/prowler-cloud/prowler/pull/5442
* feat(scan): add mutelist and config file to scan by pedrooot in https://github.com/prowler-cloud/prowler/pull/5310
* feat(scan): add scan duration by pedrooot in https://github.com/prowler-cloud/prowler/pull/5305
* feat(scan): add status argument by pedrooot in https://github.com/prowler-cloud/prowler/pull/5443
* feat(scan): execute all checks if no checks are provided by pedrooot in https://github.com/prowler-cloud/prowler/pull/5307
* feat(secretsmanager): add new check `secretsmanager_secret_rotated_periodically` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5450
* feat(secretsmanager): add new check `secretsmanager_secret_unused` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5428
* feat(SecurityHub): add `test_connection` method by sergargar in https://github.com/prowler-cloud/prowler/pull/5350
* feat(slack): add test_connection method by sergargar in https://github.com/prowler-cloud/prowler/pull/5340
* feat(test_connection): Add optional AWS Account ID validation by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5361
* feat(transfer): add new check `transfer_server_encryption_in_transit` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5590
* feat(waf): add new check `waf_global_rulegroup_not_empty` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5467
* feat(waf): add new check `waf_global_rule_with_conditions` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5465
* feat(waf): add new check `waf_global_webacl_logging_enabled` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5479
* feat(waf): add new check `waf_global_webacl_with_rules` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5469
* feat(waf): add new check `waf_regional_rulegroup_not_empty` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5415
* feat(waf): add new check `waf_regional_rule_with_conditions` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5411
* feat(waf): add new check `waf_regional_webacl_with_rules` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5392
* feat(waf): change WAF Classic `web_acls` from `list` to `dict` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5380
* feat(wafv2): add new check `wafv2_webacl_rule_logging_enabled` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5362
* feat(wafv2): add new check `wafv2_webacl_with_rules` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5376
* feat(wafv2): change `web_acls` from list to dict by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5308
* feat(wafv2): set `us-east-1` region for `global acls` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5558

Fixes

* fix(aws): do not flag cross-service confused deputy as public by sergargar in https://github.com/prowler-cloud/prowler/pull/5593
* fix(aws): findings in IAM policies were not reported by kagahd in https://github.com/prowler-cloud/prowler/pull/5560
* fix(aws): handle global WAFv2 ACLs in service by sergargar in https://github.com/prowler-cloud/prowler/pull/5628
* fix(aws): review checks in compliance frameworks by sergargar in https://github.com/prowler-cloud/prowler/pull/5513
* fix(aws): review checks with wrong attributes by sergargar in https://github.com/prowler-cloud/prowler/pull/5503
* fix(aws): solve invalid ECR Registry ARN by sergargar in https://github.com/prowler-cloud/prowler/pull/5622
* fix(bedrock): add filtering and handle different ARNs by sergargar in https://github.com/prowler-cloud/prowler/pull/5453
* fix(check): add .value to severity enum by pedrooot in https://github.com/prowler-cloud/prowler/pull/5579
* fix(checks_loader): solve issue related with checks from compliance by pedrooot in https://github.com/prowler-cloud/prowler/pull/5601
* fix(dependabot): security update `werkzeug` by sergargar in https://github.com/prowler-cloud/prowler/pull/5551
* fix(Dockerfile): install git dependency by sergargar in https://github.com/prowler-cloud/prowler/pull/5339
* fix(ecs): Adjust code to the new ARN formats in the ECS service by MarioRgzLpz in https://github.com/prowler-cloud/prowler/pull/5259
* fix(gcp): enforce correct severity levels in CloudSQL PostgreSQL `log_min_messages` by sergargar in https://github.com/prowler-cloud/prowler/pull/5571
* fix(iam): update AWS Support policy by sergargar in https://github.com/prowler-cloud/prowler/pull/5399
* fix(k8s): do not raise error when unable to list roles by sergargar in https://github.com/prowler-cloud/prowler/pull/5630
* fix(kinesis): add missing init file by puchy22 in https://github.com/prowler-cloud/prowler/pull/5490
* fix(kubernetes): handle input kube config file by sergargar in https://github.com/prowler-cloud/prowler/pull/5502
* fix(main): set attributes on load_checks_to_execute by pedrooot in https://github.com/prowler-cloud/prowler/pull/5606
* fix(organizations): no finding for access denied in listing policies by sergargar in https://github.com/prowler-cloud/prowler/pull/5400
* fix(PyPi): solve detect-secrets dependency by sergargar in https://github.com/prowler-cloud/prowler/pull/5514
* fix(rds): Check Aurora clusters properly for backup plan by sansns in https://github.com/prowler-cloud/prowler/pull/5594
* fix(threat detection): ignore AWS services events by sergargar in https://github.com/prowler-cloud/prowler/pull/5276
* fix: added s3 origin comprobation in `cloudfront_distributions_s3_origin_non_existent_bucket` by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5543

Chores
* chore(autoscaling): deprecate check `autoscaling_find_secrets_ec2_launch_configuration` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5205
* chore(aws): Add AWSSessionTokenExpired by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5378
* chore(aws): add mixed regions test for `s3_access_point_public_access_block` by LefterisXefteris in https://github.com/prowler-cloud/prowler/pull/4877
* chore(aws): add more cases to public IAM resource policies by sergargar in https://github.com/prowler-cloud/prowler/pull/5336
* chore(aws): Cleanup RDS and S3 tests by sansns in https://github.com/prowler-cloud/prowler/pull/5569
* chore(aws): cleanup tests by sansns in https://github.com/prowler-cloud/prowler/pull/5592
* chore(aws): cleanup tests on dynamodb and cloudwatch by sansns in https://github.com/prowler-cloud/prowler/pull/5588
* chore(aws): Set scan_unused_services False by default by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5425
* chore(azure): deprecate `AzureGermanCloud` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5561
* chore(cloudwatch): add tags to missing checks report by puchy22 in https://github.com/prowler-cloud/prowler/pull/5261
* chore(cloudwatch): Improve checks related with function `check_cloudwatch_log_metric_filter` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5286
* chore(codebuild): Cleanup tests by sansns in https://github.com/prowler-cloud/prowler/pull/5567
* chore(contrib): update aws-multi-account-securityhub deployment by SaintTamnoon in https://github.com/prowler-cloud/prowler/pull/5263
* chore(deps): bump boto3 from 1.35.28 to 1.35.29 by dependabot in https://github.com/prowler-cloud/prowler/pull/5257
* chore(deps): bump trufflesecurity/trufflehog from 3.82.6 to 3.82.7 by dependabot in https://github.com/prowler-cloud/prowler/pull/5315
* chore(deps): bump trufflesecurity/trufflehog from 3.82.7 to 3.82.8 by dependabot in https://github.com/prowler-cloud/prowler/pull/5371
* chore(deps): bump trufflesecurity/trufflehog from 3.82.8 to 3.82.9 by dependabot in https://github.com/prowler-cloud/prowler/pull/5421
* chore(deps): bump trufflesecurity/trufflehog from 3.82.9 to 3.82.11 by dependabot in https://github.com/prowler-cloud/prowler/pull/5458
* chore(deps): bump trufflesecurity/trufflehog from 3.82.11 to 3.82.12 by dependabot in https://github.com/prowler-cloud/prowler/pull/5508
* chore(deps): bump trufflesecurity/trufflehog from 3.82.12 to 3.82.13 by dependabot in https://github.com/prowler-cloud/prowler/pull/5531
* chore(deps): bump trufflesecurity/trufflehog from 3.82.13 to 3.83.2 by dependabot in https://github.com/prowler-cloud/prowler/pull/5611
* chore(deps-dev): bump mkdocs-material from 9.5.38 to 9.5.39 by dependabot in https://github.com/prowler-cloud/prowler/pull/5255
* chore(deps-dev): bump moto from 5.0.15 to 5.0.16 by dependabot in https://github.com/prowler-cloud/prowler/pull/5256
* chore(ecs): mock all tests using moto by puchy22 in https://github.com/prowler-cloud/prowler/pull/5326
* chore(elbv2): cleanup tests by sansns in https://github.com/prowler-cloud/prowler/pull/5553
* chore(findings): add new properties by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5463
* chore(glue): Cleanup tests by sansns in https://github.com/prowler-cloud/prowler/pull/5568
* chore(guardduty): mock failing tests using moto by puchy22 in https://github.com/prowler-cloud/prowler/pull/5334
* chore(iam): add tags to missing checks report by puchy22 in https://github.com/prowler-cloud/prowler/pull/5280
* chore(lambda): update obsolete lambda runtime by jonathanbro in https://github.com/prowler-cloud/prowler/pull/5379
* chore(ocsf): adapt mapping for version 1.3.0 by sergargar in https://github.com/prowler-cloud/prowler/pull/5287
* chore(providers): Remove `get_output_mapping` by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5484
* chore(rds): improve metadata title and description for check `rds_instance_transport_encrypted` by danibarranqueroo in https://github.com/prowler-cloud/prowler/pull/5584
* chore(regions_update): Changes in regions for AWS services by prowler-bot in https://github.com/prowler-cloud/prowler/pull/5260, https://github.com/prowler-cloud/prowler/pull/5269, https://github.com/prowler-cloud/prowler/pull/5302, https://github.com/prowler-cloud/prowler/pull/5323, https://github.com/prowler-cloud/prowler/pull/5377, https://github.com/prowler-cloud/prowler/pull/5413, https://github.com/prowler-cloud/prowler/pull/5445, https://github.com/prowler-cloud/prowler/pull/5477, https://github.com/prowler-cloud/prowler/pull/5499, https://github.com/prowler-cloud/prowler/pull/5511, https://github.com/prowler-cloud/prowler/pull/5519, https://github.com/prowler-cloud/prowler/pull/5533, https://github.com/prowler-cloud/prowler/pull/5540, https://github.com/prowler-cloud/prowler/pull/5542, https://github.com/prowler-cloud/prowler/pull/5559, https://github.com/prowler-cloud/prowler/pull/5580, https://github.com/prowler-cloud/prowler/pull/5600, https://github.com/prowler-cloud/prowler/pull/5613 and https://github.com/prowler-cloud/prowler/pull/5617
* chore(secrets): Add TelegramBotToken detector by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5321
* chore(secrets): use `master` branch of Yelp/detect-secrets by sergargar in https://github.com/prowler-cloud/prowler/pull/5298
* chore(severities): Use enum by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5460
* chore(slack): add text argument by best practice by Nirbhay1997 in https://github.com/prowler-cloud/prowler/pull/5541
* chore(sns): manage `ResourceNotFoundException` and add paralelism by puchy22 in https://github.com/prowler-cloud/prowler/pull/5345
* chore(version): update Prowler version by sergargar in https://github.com/prowler-cloud/prowler/pull/5251
* chore(wafv2): migrated testing from magicmock to moto by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5464
* chore: add dependabot labels by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5624
* refactor(acm): Change certificates from list to dict in `acm_service` by MarioRgzLpz in https:/github.com/prowler-cloud/prowler/pull/5420
* refactor(finding): Add metadata object by jfagoagas in https://github.com/prowler-cloud/prowler/pull/5447
* refactor(WAF): Rename `WAF` to `WAFRegional` and Add Global `WAF` Service by HugoPBrito in https://github.com/prowler-cloud/prowler/pull/5389
* test(aws): fix failing tests for `ecs_task_definitions_logging_enabled` and `ssm_managed_compliant_patching` by puchy22 in https://github.com/prowler-cloud/prowler/pull/5267

New Contributors
* SaintTamnoon made their first contribution in https://github.com/prowler-cloud/prowler/pull/5263
* jonathanbro made their first contribution in https://github.com/prowler-cloud/prowler/pull/5379
* AdriiiPRodri made their first contribution in https://github.com/prowler-cloud/prowler/pull/5444
* Nirbhay1997 made their first contribution in https://github.com/prowler-cloud/prowler/pull/5541

**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/4.4.1...4.5.0