Safety vulnerability ID: 52671
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Prowler-cloud 3.0.2 updates its dependency 'GitPython' to v3.1.30 to include a security fix.
Latest version: 5.0.5
Prowler is an Open Source security tool to perform AWS, GCP and Azure security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, AWS Well-Architected Framework Security Pillar, AWS Foundational Technical Review (FTR), ENS (Spanish National Security Scheme) and your custom security frameworks.
Features
* feat(regions_update): changes in regions for AWS services. by github-actions in https://github.com/prowler-cloud/prowler/pull/1629 and https://github.com/prowler-cloud/prowler/pull/1646
* feat(aws-regions): update refresh regions action by sergargar in https://github.com/prowler-cloud/prowler/pull/1641
* feat(ec2): add ResourceArn by gabrielsoltz in https://github.com/prowler-cloud/prowler/pull/1649
* feat(ecs_task_definitions_no_environment_secrets): update recommendation by Fennerr in https://github.com/prowler-cloud/prowler/pull/1658
* feat(ecs_task_definitions_no_environment_secrets): add ECS task revision number by Fennerr in https://github.com/prowler-cloud/prowler/pull/1657
Fixes
* fix(typo): Prowler for Azure by cclauss in https://github.com/prowler-cloud/prowler/pull/1619
* fix(output_filename): Use custom output filename when set by jfagoagas in https://github.com/prowler-cloud/prowler/pull/1632
* fix(iam_user_mfa_enabled_console_access): password enabled issues by n4ch04 in https://github.com/prowler-cloud/prowler/pull/1634
* fix(security-hub): apply -q to security hub by sergargar in https://github.com/prowler-cloud/prowler/pull/1637
* fix(security): update pipfile.lock by sergargar in https://github.com/prowler-cloud/prowler/pull/1639
* fix(dockerfile): Remove additional `apk update` in Dockerfile by PeterDaveHello in https://github.com/prowler-cloud/prowler/pull/1617
* fix(actions): add Github Action `contents: write` permission by sergargar in https://github.com/prowler-cloud/prowler/pull/1643
* fix(actions): add GH Action `pull-requests: write` permissions by sergargar in https://github.com/prowler-cloud/prowler/pull/1644
* fix(codeartifact): set Namespace attribute as optional by sergargar in https://github.com/prowler-cloud/prowler/pull/1648
* fix(assume-role): Refresh credentials when assuming role by n4ch04 in https://github.com/prowler-cloud/prowler/pull/1636
* fix(glacier): handle no vault policy error by sergargar in https://github.com/prowler-cloud/prowler/pull/1650
* fix(contrib): update contrib folder by sergargar in https://github.com/prowler-cloud/prowler/pull/1635
Docs
* docs(AWS-Role): fixed typo by eltociear in https://github.com/prowler-cloud/prowler/pull/1610
* docs(installation): add multiple ways to install prowler in tabs by toniblyx in https://github.com/prowler-cloud/prowler/pull/1627
New Contributors
* eltociear made their first contribution in https://github.com/prowler-cloud/prowler/pull/1610
* cclauss made their first contribution in https://github.com/prowler-cloud/prowler/pull/1619
* PeterDaveHello made their first contribution in https://github.com/prowler-cloud/prowler/pull/1617
**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/3.0.1...3.0.2
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application