Safety vulnerability ID: 59974
The information on this page was manually curated by our Cybersecurity Intelligence Team.
Prowler 3.7.2 updates its dependency 'certifi' to version '2023.7.22' include a fix.
https://github.com/prowler-cloud/prowler/pull/2623
Latest version: 5.0.5
Prowler is an Open Source security tool to perform AWS, GCP and Azure security best practices assessments, audits, incident response, continuous monitoring, hardening and forensics readiness. It contains hundreds of controls covering CIS, NIST 800, NIST CSF, CISA, RBI, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, AWS Well-Architected Framework Security Pillar, AWS Foundational Technical Review (FTR), ENS (Spanish National Security Scheme) and your custom security frameworks.
Fixes
* fix(allowlist): single account checks handling by n4ch04 in https://github.com/prowler-cloud/prowler/pull/2585
* fix(assume_role): Set the AWS STS endpoint region by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2587
* fix(compute): solve key errors in compute service by sergargar in https://github.com/prowler-cloud/prowler/pull/2610
* fix(ec2_ami_public): correct check metadata and logic by sergargar in https://github.com/prowler-cloud/prowler/pull/2618
* fix(ecs_task_def_secrets): Improve description to explain findings by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2621
* fix(guardduty): handle disabled detectors in `guardduty_is_enabled` by sergargar in https://github.com/prowler-cloud/prowler/pull/2616
* fix(opensearch): log exception as WARNING by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2581
* fix(pypi-release): solve GH action for release by sergargar in https://github.com/prowler-cloud/prowler/pull/2624
* fix(s3): `__get_object_lock_configuration__` warning logs by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2608
* fix(security): certifi issue by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2623
* fix(ssm_incidents): Handle empty name by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2591
Dependencies
* build(deps): bump azure-storage-blob from 12.16.0 to 12.17.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/2596
* build(deps): bump google-api-python-client from 2.93.0 to 2.94.0 by dependabot in https://github.com/prowler-cloud/prowler/pull/2614
* build(deps): bump mkdocs-material from 9.1.18 to 9.1.19 by dependabot in https://github.com/prowler-cloud/prowler/pull/2615
* build(deps): bump pydantic from 1.10.11 to 1.10.12 by dependabot in https://github.com/prowler-cloud/prowler/pull/2613
* build(deps-dev): bump moto from 4.1.12 to 4.1.13 by dependabot in https://github.com/prowler-cloud/prowler/pull/2598
Chores
* chore(ec2): add SG name to resource_details by sergargar in https://github.com/prowler-cloud/prowler/pull/2495
* chore(metadata): Typos by gabriel-pragin-clearscale in https://github.com/prowler-cloud/prowler/pull/2594
* chore(regions_update): Changes in regions for AWS services. by sergargar in https://github.com/prowler-cloud/prowler/pull/2606
Tests
* test(aws_provider): Role and User MFA by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2486
Documentation
* docs(boto3-configuration): format list by jfagoagas in https://github.com/prowler-cloud/prowler/pull/2609
* docs(README): typos in README.md by kagahd in https://github.com/prowler-cloud/prowler/pull/2579
New Contributors
* gabriel-pragin-clearscale made their first contribution in https://github.com/prowler-cloud/prowler/pull/2594
**Full Changelog**: https://github.com/prowler-cloud/prowler/compare/3.7.1...3.7.2
Scan your Python project for dependency vulnerabilities in two minutes
Scan your application