Prowler

In 1982, Iron Maiden released _The Number of the Beast_, their third studio album and the first with Bruce Dickinson as their lead vocalist. The song _Run to the Hills_ gives me very good memories, as the time we are living will do the same in the future. That song is one of the greatest metal songs in music history. Enjoy it as we do while releasing this new version of Prowler!
https://www.youtube.com/watch?v=86URGgqONvA

> Image copyright by Iron Maiden


Important changes in this version (read this!):
Now, if you want to use your allowlist or custom checks you can retrieve it from a S3 Bucket using `-w` option along with a S3 URI like `s3://bucket/prefix/allowlist_sample.txt`

Also, we have enriched some IAM checks to provide more information about resources when the check status is PASS.

New Features
* New Extra Check - Detect SGs created by the EC2 Launch Wizard by sectoramen in https://github.com/prowler-cloud/prowler/pull/1081
* Support S3 URIs for custom checks paths by sergargar in https://github.com/prowler-cloud/prowler/pull/1090
* Support S3 URIs for allowlist file by sergargar in https://github.com/prowler-cloud/prowler/pull/1090

Enhancements
* Update example code for terraform-quickstart by spazm in https://github.com/prowler-cloud/prowler/pull/1086
* Replace comma from csv input info to prevent breaking `csv` format by n4ch04 in https://github.com/prowler-cloud/prowler/pull/1102
* IAM check116 and check122 now logs more detailed information with PASS results by n4ch04 in https://github.com/prowler-cloud/prowler/pull/1107

Fixes
* Fix(secrets_library): Verify if detect-secrets library is missing by sergargar in https://github.com/prowler-cloud/prowler/pull/1080
* Fix(extra729,extra740): Typo by mourackb in https://github.com/prowler-cloud/prowler/pull/1083
* Fix(extra736): Missing $PROFILE_OPT by soffensive in https://github.com/prowler-cloud/prowler/pull/1084
* Fix(extra792): TLS1.3 policies added as secure and TLS1.1/1.0 as insecure by sergargar in https://github.com/prowler-cloud/prowler/pull/1091
* Fix(extra7172): IllegalLocationConstraintException properly handled by sergargar in https://github.com/prowler-cloud/prowler/pull/1093
* Fix(extra764): NoSuchBucket error properly handled by sergargar in https://github.com/prowler-cloud/prowler/pull/1094
* Fix(extra764): Deleted temporary file references by n4ch04 in https://github.com/prowler-cloud/prowler/pull/1089
* Fix(extra7147): Handle unsupported AWS regions for Glacier by jfagoagas in https://github.com/prowler-cloud/prowler/pull/1101
* Fix(extra79): Typo publiccly -> publicly by carterjones in https://github.com/prowler-cloud/prowler/pull/1106
* Fix(extra75): Empty array check in SECURITYGROUPS object by nealalan in https://github.com/prowler-cloud/prowler/pull/1099

New Contributors
* mourackb made their first contribution in https://github.com/prowler-cloud/prowler/pull/1083
* spazm made their first contribution in https://github.com/prowler-cloud/prowler/pull/1086
* nealalan made their first contribution in https://github.com/prowler-cloud/prowler/pull/1099
* carterjones made their first contribution in https://github.com/prowler-cloud/prowler/pull/1106

**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/2.8.1...2.9.0

What's Changed
* fix(bucket_region): check extra764 doesn't handle bucket region properly by sergargar in https://github.com/prowler-cloud/prowler/pull/1077
* fix(detect-secrets): Include missing colon to link values by jfagoagas in https://github.com/prowler-cloud/prowler/pull/1078

**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/2.8.0...2.8.1

_The Ides of March_ is an instrumental song that opens the second studio album of Iron Maiden called Killers. This song is great as an opening, March is the month when spring starts in my side of the world, is always time for optimism. Ides of March also means 15 of March in the Roman calendar (and the day of the [assassination of Julius Caesar](https://en.wikipedia.org/wiki/Assassination_of_Julius_Caesar)). Enjoy the song [here](https://www.youtube.com/watch?v=D33DxLn4XII).

We have put our best to make this release and with important help of the Prowler community of cloud security engineers around the world, thank you all! Special thanks to the Prowler full time engineers jfagoagas, n4ch04 and sergargar! (and Bruce, my dog) ❤️


Important changes in this version (read this!):

Now, if you have AWS Organizations and are scanning multiple accounts using the assume role functionality, Prowler can get your account details like Account Name, Email, ARN, Organization ID and Tags and add them to CSV and JSON output formats. More information and usage [here](https://github.com/prowler-cloud/prowler#get-aws-account-details-from-your-aws-organization).

New Features

* 1 New check for S3 buckets have ACLs enabled by jeffmaley in https://github.com/prowler-cloud/prowler/pull/1023 :

This release name is in honor of [Brave New World](https://www.youtube.com/watch?v=6Inyg70V-QI), a great song of 🔥Iron Maiden🔥 from their Brave New World album. Dedicated to all of you looking forward to having the world we had before COVID... We hope is not hitting you bad. Enjoy!

Important changes in this version (read this!):
- As you can see, Prowler is now in a new organization called [https://github.com/prowler-cloud/](https://github.com/prowler-cloud/).
- When Prowler doesn't have permissions to check a resources or service it gives an **INFO** instead of **FAIL**. We have improved all checks error handling in those use cases when the CLI responds with a **AccessDenied**, **UnauthorizedOperation** or **AuthorizationError**.
- From this version, `master` branch will be the latest available code and we will keep the stable code as each release, if you are installing or deploying Prowler using `git clone` to master take that into account and use the latest release instead, i.e.: `git clone --branch 2.7 https://github.com/prowler-cloud/prowler` or `curl https://github.com/toniblyx/prowler/archive/refs/tags/2.7.0.tar.gz -o prowler-2.7.0.tar.gz`
- For known issues please see https://github.com/prowler-cloud/prowler/issues the ones open with `bug` as a red tag.
- Discussions is now open in the Prowler repo https://github.com/prowler-cloud/prowler/discussions, feel free to use it if that works for you better than the current [Discord server](https://discord.gg/UjSMCVnxSB).
- 11 new checks!! Thanks to michael-dickinson-sainsburys, jonloza, rustic, Obiakara, Daniel-Peladeau, maisenhe, 7thseraph and tekdj7. Now there have a total of 218 checks. See below for details.
- An issue with Security Hub integration when resolving closed findings are either a lot of new findings, or a lot of resolved findings is now working as expected thanks to Kirizan
- When credential are in environment variable it failed to review, that was fixed by lazize
- See below new features and more details for this version.

New Features

- 11 New checks for Redshift, EFS, CloudWatch, Secrets Manager, DynamoDB and Shield Advanced:

What's Changed

* e4edb5e - Enhancement IAM assumed role session duration error handling by jfagoagas
* 3e78f01 - Fix Terraform Kickstarter path in README by z0ph
* cee6437 - Fix issue 926 resource id and remediation typo
* b251f31 - Fix issue 925 replace sensible by sensitive in multiple checks
* 50de9f2 - Fix output for checks check3x when no CW group is in place
* a6ba580 - Fix severity case variable

New Contributors
* z0ph made their first contribution in https://github.com/toniblyx/prowler/pull/927
* Thanks fredski-github for reporting bugs.

**Full Changelog**: https://github.com/toniblyx/prowler/compare/2.6.0...2.6.1

This release name is in honor to [Phantom of the Opera](https://www.youtube.com/watch?v=3tEkx8wl5Yk), one of my favorite songs and a master piece of 🔥Iron Maiden🔥. It starts by _"I've been lookin' so long for you now"_ like looking for security issues, isn't it? 🤘🏼 [Enjoy it here while reading the rest of this note](https://www.youtube.com/watch?v=MjAQSlTVcYI).

Important changes in this version:
- CIS level parameter (ITEM_LEVEL) has been reverted to the csv, json and html outputs (it was removed in 2.5), CIS Scored is not added since it is not relevant in the global Prowler reports. dd398a9
- Security Hub integration has been fixed due to a conflict with duplicated findings in the management account by xeroxnir
- 12 New checks!! Thanks to kbgoll05, qumei, georgie969, ShubhamShah11, jarrettandrulis, dsensibaugh, ShubhamShah11, ManuelUgarte, tekdj7: Now there are a total of 207. See below for details.
- Known issues, please review https://github.com/toniblyx/prowler/issues?q=is%3Aissue+is%3Aopen+label%3Abug.
- Now there is a Discord server for Prowler available, check it out in README.md.
- There is a maintained Docker Hub repo for Prowler and AWS ECR public repo as well. See badges in README.md for details.
- See below new features for more details of new cool stuff in this version.

New Features:
- 12 New checks for efs, redshift, elb, dynamodb, route53, cloiudformation, elb and apigateway: