Skip to content

Releases: prowler-cloud/prowler

Prowler 5.1.1

16 Jan 16:58
@jfagoagas jfagoagas
5.1.1
c172f75
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.1.1

UI

Fixes

SDK

Fixes

Full Changelog: 5.1.0...5.1.1

Contributors

prowler-bot
Loading

Prowler 5.1.0

14 Jan 15:49
@jfagoagas jfagoagas
5.1.0
a65ca72
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.1.0

New features to highlight in this version

🔒 RBAC - Role Based Access Control

Gain granular control over user access and permissions with our new Role-Based Access Control. Now you can assign roles and privileges to specific users, ensuring they only have access to what they need. Also, now you can create cloud provider's groups to be assigned to roles to allow them to be visible.
screencapture-localhost-3000-roles-new-2025-01-14-16_47_02

🧑‍🔧 4 New Checks!

We have expanded our coverage with 4 new checks, enhancing your security and compliance for EC2, StepFunctions and CloudFormation in AWS and Azure SQLServer.

1. ec2_launch_template_imdsv2_required
2. stepfunctions_statemachine_logging_enabled
3. cloudformation_stack_cdktoolkit_bootstrap_version
4. sqlserver_recommended_minimal_tls_version

🚀 30 New AWS Fixers!

We have included 30 new fixers to help you automatically remediate misconfigurations in AWS services: Lambda, SQS, ECR, Glacier, OpenSearch, S3, EC2, CloudTrail and CodeArtifact.

Run a specific fixer with:
prowler aws --check <check_id> --fixer

See all the new available fixers with prowler aws --list-fixers

1. awslambda_function_not_publicly_accessible_fixer
2. sqs_queues_not_publicly_accessible_fixer
3. ecr_repositories_not_publicly_accessible_fixer
4. glacier_vaults_policy_public_access_fixer
5. opensearch_service_domains_not_publicly_accessible_fixer
6. s3_bucket_public_write_acl_fixer
7. s3_bucket_public_list_acl_fixer
8. s3_bucket_public_access_fixer
9. ec2_instance_port_cifs_exposed_to_internet_fixer
10. s3_bucket_policy_public_write_access_fixer
11. ec2_ami_public_fixer
12. cloudtrail_logs_s3_bucket_is_not_publicly_accessible_fixer
13. codeartifact_packages_external_public_publishing_disabled_fixer
14. ec2_instance_port_cassandra_exposed_to_internet_fixer
15. ec2_instance_port_elasticsearch_kibana_exposed_to_internet_fixer
16. ec2_instance_port_ftp_exposed_to_internet_fixer
17. ec2_instance_port_kafka_exposed_to_internet_fixer
18. ec2_instance_port_kerberos_exposed_to_internet_fixer
19. ec2_instance_port_ldap_exposed_to_internet_fixer
20. ec2_instance_port_memcached_exposed_to_internet_fixer
21. ec2_instance_port_mongodb_exposed_to_internet_fixer
22. ec2_instance_port_mysql_exposed_to_internet_fixer
23. ec2_instance_port_oracle_exposed_to_internet_fixer
24. ec2_instance_port_postgresql_exposed_to_internet_fixer
25. ec2_instance_port_rdp_exposed_to_internet_fixer
26. ec2_instance_port_redis_exposed_to_internet_fixer
27. ec2_instance_port_sqlserver_exposed_to_internet_fixer
28. ec2_instance_port_ssh_exposed_to_internet_fixer
29. ec2_instance_port_telnet_exposed_to_internet_fixer
30. ec2_securitygroup_allow_ingress_from_internet_to_high_risk_tcp_ports_fixer

📄 Added CIS 3.0 for GCP

Prowler now supports the CIS 3.0 for GCP.

🖊️ New check's category gen-ai

With the growing number of Generative AI, Machine Learning and LLM training services, we are adding a new gen-ai category to allow AI related service checks to be found/run more easily.

🐎 Several performance improvements in the API

🔧 Other issues and bug fixes solved

New Contributors

Special thanks to our amazing new contributors: @madslundholmdk @Twodragon0

UI

Features

Fixes

  • fix(invitations): remove wrong url by @paabloLC in #6005
  • fix(BC: NextUI): fix BC from NextUI, resolve ESLint warnings and optimize hooks dependencies by @paabloLC in #6404
  • fix(invitation): correct the URL used to share an invitation by @paabloLC in #6472
  • styles(invitations): tweak styles for invitation details box by @paabloLC in #6475

Chores / Dependencies

  • chore(rbac): tweaks role permissions by @paabloLC in #6496
  • chore(deps-dev): bump eslint-plugin-import from 2.29.1 to 2.31.0 in /ui by @dependabot in #6482
  • chore(deps): bump @radix-ui/react-slot from 1.1.0 to 1.1.1 in /ui by @dependabot in #6481
  • chore(roles): prevent capitalization of provider groups and roles by @paabloLC in #6497
  • chore(groups): Enable updating groups without roles or providers by @paabloLC in #6498
  • chore(manage-groups): tweaks for provider manage groups by @paabloLC in #6468
  • chore(deps): bump @radix-ui/react-toast from 1.2.1 to 1.2.4 in /ui by @dependabot in #6445
  • chore(deps): bump lucide-react from 0.417.0 to 0.471.0 in /ui by @dependabot in #6456
  • chore(deps): bump date-fns from 3.6.0 to 4.1.0 in /ui by @dependabot in #6444
  • chore(deps-dev): bump @iconify/react from 5.0.1 to 5.2.0 in /ui by @dependabot in #6421
  • chore(deps): bump nanoid from 3.3.7 to 3.3.8 in /ui by @dependabot in #6110
  • chore(deps): bump cross-spawn from 7.0.3 to 7.0.6 in /ui by @dependabot in #5881
  • chore(deps): bump cookie and next-auth in /ui by @dependabot in #5880
  • chore(deps): bump next from 14.2.12 to 14.2.22 in /ui by @dependabot in #6356

API

Features

Fixes

Chores / Dependencies

Docs

SDK

Features

Read more

Contributors

madslundholmdk, metahertz, and 15 other contributors
Loading

Prowler 5.0.5 - Powerslave

23 Dec 14:27
@MrCloudSec MrCloudSec
5.0.5
46e7ecc
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.0.5 - Powerslave

What's Changed

Full Changelog: 5.0.4...5.0.5

Contributors

MrCloudSec and prowler-bot
Loading

Prowler 5.0.4 - Powerslave

20 Dec 17:01
@MrCloudSec MrCloudSec
5.0.4
dc4b771
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.0.4 - Powerslave

What's Changed

Fixes

  • fix(aws): disallow child-accounts to overwrite policy for ai_services_opt_out by @prowler-bot in #6292
  • fix(db-utils): fix batch_delete function by @prowler-bot in #6285
  • fix(users): fix /users/me behavior when having more than 1 users in the same tenant by @prowler-bot in #6288

Chores

Full Changelog: 5.0.3...5.0.4

Contributors

MrCloudSec and prowler-bot
Loading

Prowler 5.0.3 - Powerslave

19 Dec 22:21
@MrCloudSec MrCloudSec
5.0.3
17e1472
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.0.3 - Powerslave

What's Changed

Fixes

Chores

Full Changelog: 5.0.2...5.0.3

Contributors

jfagoagas and prowler-bot
Loading

Prowler 5.0.2 - Powerslave

18 Dec 18:22
@jfagoagas jfagoagas
5.0.2
5d41c6a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.0.2 - Powerslave

API

Fixes

Chores

SDK

Fixes

Chores

Full Changelog: 5.0.1...5.0.2

Contributors

MrCloudSec and prowler-bot
Loading

Prowler 5.0.1 - Powerslave

13 Dec 19:16
@MrCloudSec MrCloudSec
5.0.1
83ffd78
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.0.1 - Powerslave

UI

Fixes

Chores

API

Fixes

SDK

Fixes

Chores

Full Changelog: 5.0.0...5.0.1

Contributors

prowler-bot
Loading

Prowler 4.6.2 - Blood Brothers

10 Dec 21:11
@MrCloudSec MrCloudSec
4.6.2
4fb0108
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 4.6.2 - Blood Brothers

What's Changed

Fixes

Chores

Full Changelog: 4.6.1...4.6.2

Contributors

dependabot, MrCloudSec, and prowler-bot
Loading

Prowler 5.0.0 - Powerslave 🚀

03 Dec 16:42
@MrCloudSec MrCloudSec
5.0.0
52723ed
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 5.0.0 - Powerslave 🚀

Tell me why I had to be a powerslave
I don't wanna die, I'm a god
Why can't I live on?
When the life giver dies
All around is laid waste
And in my last hour
I'm a slave to the power of death

Powerslave was the fifth studio album by Iron Maiden, released on 3 September 1984. 🎸 Fast forward 40 years and 3 months later, we are thrilled to announce the release of Prowler 5.0 a.k.a. Powerslave — our most advanced and comprehensive release to date. Powerslave, also the seventh song on that iconic album, was written by Bruce Dickinson and explores an Egyptian pharaoh's wondering why he has to die, we know that is exactly what we think about Open Source, as soon as it is released, a piece of Open Source software will never die. 🌟

Prowler 5.0.0 - Powerslave is meant to be a game changer 🕹️ in the Cloud Security space as it comes with many new and needed features for our community of users and customers. If we want the cloud adoption to keep growing, we need more Open Source software to help gain confidence in the cloud with open, agnostic and transparent tools, that is what we call of the Open Cloud Security movement. 🌐

prowler5overview

🎉 What's New?

🖥️ Enhanced UI, API, SDK, and Persistent Storage

  • A brand-new UI component to unify all scans and drill down into findings and more.
  • Robust APIs to solve a variety of use cases.
  • SDKs for seamless integration and automation.
  • Persistent storage for reporting, ensuring that your security insights are comprehensive and always accessible.

🔄 Continuous Monitoring and One-Time Assessments

  • Support for both continuous monitoring and ad-hoc security assessments.
  • Why settle for one-time assessments when you can stay continuously protected? 🛡️

📚 Expanded Detection and Remediation Control Framework

  • Over 1,000 security controls across AWS, Azure, Google Cloud, and Kubernetes.
  • Numerous remediation options to secure your cloud infrastructure effectively.

🤖 AI-Driven Control Creation

  • Leveraging artificial intelligence to automatically generate new detection checks and remediations.
  • Stay ahead of the latest threats with cutting-edge security measures. ⚡

💾 Get Started

From today, you can:

  • Use the Prowler platform on-premises by downloading and running it yourself. As usual, using just the powerful CLI with the same output formats as always (pipx install prowler), or for the whole platform together with new components, just run docker compose up -d from the root folder of Prowler repo, open https://localhost:3000, add your user and start making your cloud secure.
  • Or use all in one place, Prowler as a Cloud Service managed by us 🌩️ Visit prowler.com and sign up for 15 days free and let us know what do you think! 🗨️

🔮 What’s Next?

We're continuously adding new features! Keep track of upcoming updates here: roadmap.prowler.com 🛠️

Join us on this journey to revolutionize Open Cloud Security. 🌟

Loading

Prowler 4.6.1 - Blood Brothers

29 Nov 16:16
@MrCloudSec MrCloudSec
4.6.1
e771218
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
Prowler 4.6.1 - Blood Brothers

What's Changed

Fixes

Full Changelog: 4.6.0...4.6.1

Contributors

prowler-bot
Loading