Releases: prowler-cloud/prowler
Prowler 3.5.2 - Dune (To Tame a Land)
Fixes
- fix(action): solve pypi-release action creating the release branch by @sergargar in #2364
- fix(sts): Use the right region to validate credentials by @jfagoagas in #2349
- fix(resource_not_found): Handle error by @jfagoagas in #2370
- fix(ssm incidents): check if service available in aws partition by @sergargar in #2372
Chores
- chore(docs): format regions-and-partitions by @jfagoagas in #2371
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2366
Full Changelog: 3.5.1...3.5.2
Prowler 3.5.1 - Dune (To Tame a Land)
Fixes
- fix(README): order providers alphabetically by @sergargar in #2344
- fix(README): update Architecture image and PyPi links by @sergargar in #2345
- fix(route53): handle empty Records in Zones by @sergargar in #2351
Dependencies
- build(deps): bump pymdown-extensions from 9.11 to 10.0 by @dependabot in #2355
- build(deps): bump shodan from 1.28.0 to 1.29.0 by @dependabot in #2356
- build(deps): bump botocore from 1.29.125 to 1.29.134 by @dependabot in #2357
- build(deps-dev): bump pytest-xdist from 3.2.1 to 3.3.0 by @dependabot in #2358
- build(deps): bump mkdocs-material from 9.1.8 to 9.1.12 by @dependabot in #2359
- build(deps-dev): bump docker from 6.1.1 to 6.1.2 by @dependabot in #2360
Chores
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2350
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2353
Full Changelog: 3.5.0...3.5.1
Prowler 3.5.0 - Dune (To Tame a Land)
I like the story behind this Iron Maiden song. Enjoy Prowler 3.5.0 - Dune!
New features to highlight in this version:
🥳 Slack integration:
- Prowler now supports Slack integrations! Send a summary of the execution with a Slack APP in your channel, see more in our Integrations Docs
✅ 9 new checks for AWS:
- New services covered like FMS and NetworkFirewall, additional checks for AutoScaling, Organizations, RDS, Route53, S3, SSM Incidents and Workspaces.
- New important checks:
iam_role_cross_account_readonlyaccess_policy
Ensure IAM Roles do not have ReadOnlyAccess access for external AWS accountsroute53_dangling_ip_subdomain_takeover
Check if Route53 Records contains dangling IPs (based on https://github.com/assetnote/ghostbuster)
- See all checks with
prowler aws --list-checks
🔨 Allowlist improvements:
- You can allowlist an specific service and include regex expressions in the tags, see more in our Allowlist Docs
What's Changed:
Features
- feat(allowlist): allowlist a specific service by @sergargar in #2331
- feat(allowlist): Support regexes in Tags to allow "or"-like conditional matching by @kppullin in #2300
- feat(autoscaling): new check autoscaling_group_multiple_az by @gabrielsoltz in #2273
- feat(FMS): New Service FMS and Check fms_accounts_compliant by @gabrielsoltz in #2259
- feat(iam): add
iam_role_cross_account_readonlyaccess_policy
check by @sergargar in #2312 - feat(NetworkFirewall): New Service and Check by @gabrielsoltz in #2261
- feat(Organizations): New check organizations_tags_policies_enabled_and_attached by @gabrielsoltz in #2287
- feat(pre-commit): added trufflehog to pre-commit by @n4ch04 in #2311
- feat(rds): new check rds_instance_deprecated_engine_version by @pedromarting3 in #2298
- feat(route53): add route53_dangling_ip_subdomain_takeover check by @sergargar in #2288
- feat(s3): add s3_bucket_object_lock check by @sergargar in #2274
- feat(slack): add Slack App integration by @sergargar in #2305
- feat(ssmincidents): Use regional_client region instead of audit_profile region by @gabrielsoltz in #2306
- feat(workspaces): New check workspaces_vpc_2private_1public_subnets_nat by @gabrielsoltz in #2286
Fixes
- fix(access-analyzer): Handle ResourceNotFoundException by @jfagoagas in #2336
- fix(apigateway2): correct paginator name by @sergargar in #2283
- fix(backup): Return [] when None AdvancedBackupSettings by @gabrielsoltz in #2304
- fix(backups): change severity and only check report_plans if plans exists by @gabrielsoltz in #2291
- fix(client_error): Handle errors by @jfagoagas in #2308
- fix(cloudfront_distributions_https_enabled): Add default case by @jfagoagas in #2329
- fix(cloudtrail): handle InsightNotEnabledException error by @sergargar in #2322
- fix(ecr): Refactor service by @jfagoagas in #2302
- fix(emr): Handle InvalidRequestException by @jfagoagas in #2320
- fix(iam): Handle ListRoleTags and policy errors by @jfagoagas in #2319
- fix(opensearch): Handle invalid JSON policy by @jfagoagas in #2262
- fix(rds): check configurations for DB instances at cluster level by @sergargar in #2277
- fix(resourceexplorer2): add resource id by @sergargar in #2335
- fix(s3): handle NoSuchBucket error by @sergargar in #2289
- fix(sagemaker): Handle ValidationException by @jfagoagas in #2321
- fix(sns_topics_not_publicly_accessible): Change PASS behaviour by @jfagoagas in #2282
- fix(trustedadvisor): avoid not_available checks by @sergargar in #2323
- fix(typo): remove redundant lines by @kagahd in #2307
- fix(typo): typo in
backup_vaults_exist
check title by @sergargar in #2317 - fix(vpc services): list to dicts in vpc and subnets by @n4ch04 in #2310
Chores
- chore(docs): improve GCP docs by @sergargar in #2318
- chore(docs): improve security hub docs by @sergargar in #2285
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2334
Dependencies
- build(deps): bump boto3 from 1.26.115 to 1.26.125 by @dependabot in #2327
- build(deps): bump botocore from 1.29.115 to 1.29.125 by @dependabot in #2301
- build(deps): bump google-api-python-client from 2.84.0 to 2.86.0 by @dependabot in #2296
- build(deps): bump mkdocs-material from 9.1.6 to 9.1.8 by @dependabot in #2294
- build(deps): bump mkdocs from 1.4.2 to 1.4.3 by @dependabot in #2324
- build(deps-dev): bump coverage from 7.2.3 to 7.2.5 by @dependabot in #2297
- build(deps-dev): bump docker from 6.0.1 to 6.1.1 by @dependabot in #2326
- build(deps-dev): bump moto from 4.1.8 to 4.1.9 by @dependabot in #2328
- build(deps-dev): bump pylint from 2.17.3 to 2.17.4 by @dependabot in #2325
New Contributors
Full Changelog: 3.4.1...3.5.0
Prowler 3.4.1 - Still Life
Fixes
- fix(iam_role_cross_service_confused_deputy_prevention): avoid service linked roles by @sergargar in #2249
- fix(version): execute check current version function only when
-v
by @sergargar in #2263 - fix(log_group_retention): handle log groups that never expire by @jfagoagas in #2272
Chores
- chore(test): add rds_instance_transport_encrypted test by @sergargar in #2252
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2251
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2258
- chore(test): add CloudWatch and Logs tests by @sergargar in #2264
Builds
- build(deps-dev): bump pytest from 7.3.0 to 7.3.1 by @dependabot in #2266
- build(deps-dev): bump pylint from 2.17.2 to 2.17.3 by @dependabot in #2267
- build(deps-dev): bump moto from 4.1.7 to 4.1.8 by @dependabot in #2268
- build(deps): bump boto3 from 1.26.105 to 1.26.115 by @dependabot in #2269
- build(deps): bump azure-mgmt-security from 4.0.0 to 5.0.0 by @dependabot in #2270
Full Changelog: 3.4.0...3.4.1
Prowler 3.4.0 - Still Life
Take a look in the pool and what do you see
In the dark depths there faces beckoning me
Can't you see them it's plain for all to see
They were there oh I know you don't believe me
Still Life is one of those jewels that Iron Maiden has (well… aren’t jewels all their songs? 😉) and it is so good that they also included it in their live double vhs/dvd/cd/lp called “Maiden England” back in 1988. The song is based on a book from Ramsey Campbell called "The Inhabitant of the lake and less welcome tenants”, and it is about somebody that see ghosts in the bottom of a lake and gets crazy about that. They are like cloud security vulnerabilities, they are everywhere and seems to be hard to beat them. Listen to the song here 🔥Still Life🔥 while hardening and reading below what we did.
A brand new version of Prowler 3.4.0 at your command! This version won’t make your ghosts to disappear but will help you to put them in their place and in line to start the journey of getting rid of them. Time to shine up your boots with pip install prowler --upgrade
.
New features to highlight in this version:
☁️ New support for Google Cloud with 43 checks!:
- GCP services covered: IAM, BigQuery, CloudSQL, CloudStorage, Compute, KMS and Logging.
- Run
prowler gcp --list-checks
for details and visit our Prowler GCP documentation here.
✅ 21 new checks for AWS:
- New services covered like Organizations best practices, SSM Incidents, Resource Explorer, Backup, additional checks for CloudTrail, ECR scan on push check updated, GuardDuty, VPC best practices, IAM (see these ones that will help you a lot!) thanks to @gabrielsoltz
- Watch out!
iam_policy_no_administrative_privileges
has been renamed toiam_customer_unattached_policy_no_administrative_privileges
- New important IAM checks:
- [iam_aws_attached_policy_no_administrative_privileges] Ensure IAM AWS-Managed policies that allow full ":" administrative privileges are not attached - iam [high]
- [iam_customer_attached_policy_no_administrative_privileges] Ensure IAM Customer-Managed policies that allow full ":" administrative privileges are not attached - iam [high]
- [iam_customer_unattached_policy_no_administrative_privileges] Ensure IAM policies that allow full ":" administrative privileges are not created - iam [low]
- See all checks with
prowler aws --list-checks
📊 New html report for Azure and GCP:
- When running Azure or GCP checks, html report is now also created for you to enjoy them during your security assessments.
⚙️ Custom checks now supported:
- You can create your custom checks inside Prowler or in your custom folders following our Developer Guide and a Tutorial about it here, new option
-x/--checks-folder
for your custom checks.
🏷️ Resource Tags supported in Allow list:
- Take advantage of Allow list during your scans also using tags filers, more information here https://docs.prowler.cloud/en/latest/tutorials/allowlist/.
What's Changed:
Features
- feat(allowlist): Add tags filter to allowlist by @sergargar in #2105
- feat(backup): New backup service and checks by @gabrielsoltz in #2172
- feat(banner): Include Azure credential banner by @n4ch04 in #2179
- feat(check): New Check and Service: resourceexplorer2_indexes_found by @gabrielsoltz in #2196
- feat(check): New check ecr_registry_scan_images_on_push_enabled by @sergargar in #2237
- feat(check): New CloudTrail check cloudtrail_insights_exist by @gabrielsoltz in #2184
- feat(check): New CloudTrail check cloudtrail_bucket_requires_mfa_delete by @gabrielsoltz in #2194
- feat(check): New GuardDuty check guardduty_centrally_managed by @gabrielsoltz in #2195
- feat(check): New VPC checks by @gabrielsoltz in #2218
- feat(checks): New IAM Checks no full access to critical services by @gabrielsoltz in #2183
- feat(checks): New IAM check iam_securityaudit_role_created by @gabrielsoltz in #2182
- feat(custom checks): Add -x/--checks-folder for custom checks by @sergargar in #2191
- feat(gcp): Add Google Cloud provider with 43 checks by @sergargar in #2125
- feat(html): Add html to Azure and GCP by @sergargar in #2181
- feat(new_checks): New AWS Organizations checks by @gabrielsoltz in #2133
- feat(orgs checks region): Add region to all Organizations checks by @n4ch04 in #2202
- feat(ssmincidents): New Service and Checks by @gabrielsoltz in #2219
Fixes
- fix(audit_info): Azure subscriptions parsing error by @n4ch04 in #2147
- fix(aws_provider): Fix assessment session name by @jfagoagas in #2132
- fix(azure output): Change default values of audit identity metadata by @n4ch04 in #2144
- fix(brew): Move brew formula action to the bottom by @sergargar in #2135
- fix(cloudformation): Handle ValidationError by @jfagoagas in #2166
- fix(dax): Call list_tags using the cluster ARN by @jfagoagas in #2167
- fix(defender service): Retrieve key dicts with get by @n4ch04 in #2129
- fix(delete check): Delete check ec2.._in_use_without_ingrgess_filtering by @n4ch04 in #2148
- fix(docs): Check extra_742 name adjusted in the V2 to V3 mapping by @cerontrustly in #2154
- fix(elb-test): Use a mocked current audit info by @jfagoagas in #2207
- fix(elbv2 desync check): Mixed elbv2 desync and smuggling by @n4ch04 in #2171
- fix(errors): Solve ECR and CodeArtifact errors by @sergargar in #2239
- fix(gcp): Handle error when Project ID is None by @sergargar in #2130
- fix(global services): Fix global services region by @n4ch04 in #2203
- fix(iam): Handle LimitExceededException when calling generate_credential_report by @jfagoagas in #2168
- fix(iam): Handle no display name error in service account by @sergargar in #2176
- fix(iam tests): Mock audit_info object by @sergargar in #2226
- fix(iam_policy_no_administrative_privileges): Check attached policies and AWS-Managed by @sergargar in #2200
- fix(kms): Handle empty principal error by @sergargar in #2192
- fix(logging): Add default resource id when no resources by @sergargar in #2177
- fix(output bucket): Solve IsADirectoryError using compliance flag by @sergargar in #2121
- fix(pipeline build): Fix wording when build and push by @n4ch04 in #2169
- fix(pypi): Set base branch when updating release version by @jfagoagas in #2152
- fix(quickinventory): AttributError when creating inventory table by @bnugent in #2122
- fix(rds): Handle DBSnapshotNotFound by @jfagoagas in #2165
- fix(readme): Add GCP provider to README introduction by @sergargar in #2143
- fix(redshift): correct description in redshift_cluster_automatic_upgrades by @rubtoa #2246
- fix(resourceexplorer2): Solve test and region by @sergargar in #2206
- fix(resource_not_found): Handle error by @jfagoagas in #2136
- fix(rds): exclude Aurora in rds_instance_transport_encrypted check by @sergargar #2245
- fix(s3): Handle if ignore_public_acls is None by @jfagoagas in #2128
- fix(secretsmanager_automatic_rotation_enabled): Improve description for Secrets Manager secret rotation by @visit1985 in #2156
- fix(ssm): Handle ValidationException when retrieving documents by @jfagoagas in #2146
- fix(test): Call cloudtrail_s3_dataevents_write_enabled check by @jfagoagas in #2204
- fix(test): Mock audit info in services #2208 #2210 #2211 http...
Prowler 3.3.4 - Sun and Steel [HOTFIX]
Fixes
- fix(docs): check extra_742 name adjusted in the V2 to V3 mapping by @cerontrustly in #2154
- fix(secretsmanager_automatic_rotation_enabled): Improve description for Secrets Manager secret rotation by @visit1985 in #2156
- fix(rds): Handle DBSnapshotNotFound by @jfagoagas in #2165
- fix(cloudformation): Handle ValidationError by @jfagoagas in #2166
- fix(iam): Handle LimitExceededException when calling generate_credential_report by @jfagoagas in #2168
- fix(dax): Call list_tags using the cluster ARN by @jfagoagas in #2167
- fix(pipeline build): fixed wording when build and push by @n4ch04 in #2169
- fix(elbv2 desync check): Mixed elbv2 desync and smuggling by @n4ch04 in #2171
Chores
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2155 #2159 #2170 #2173
Dependencies
- build(deps-dev): bump pylint from 2.17.0 to 2.17.2 by @dependabot in #2161
- build(deps): bump mkdocs-material from 9.1.4 to 9.1.5 by @dependabot in #2162
- build(deps): bump botocore from 1.29.100 to 1.29.105 by @dependabot in #2163
- build(deps-dev): bump moto from 4.1.5 to 4.1.6 by @dependabot in #2164
New Contributors
- @cerontrustly made their first contribution in #2154
- @visit1985 made their first contribution in #2156
Full Changelog: 3.3.2...3.3.3
Prowler 3.3.3 - Sun and Steel
Fixes
- fix(docs): check extra_742 name adjusted in the V2 to V3 mapping by @cerontrustly in #2154
- fix(secretsmanager_automatic_rotation_enabled): Improve description for Secrets Manager secret rotation by @visit1985 in #2156
- fix(rds): Handle DBSnapshotNotFound by @jfagoagas in #2165
- fix(cloudformation): Handle ValidationError by @jfagoagas in #2166
- fix(iam): Handle LimitExceededException when calling generate_credential_report by @jfagoagas in #2168
- fix(dax): Call list_tags using the cluster ARN by @jfagoagas in #2167
- fix(pipeline build): fixed wording when build and push by @n4ch04 in #2169
- fix(elbv2 desync check): Mixed elbv2 desync and smuggling by @n4ch04 in #2171
Chores
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2155 #2159 #2170 #2173
Dependencies
- build(deps-dev): bump pylint from 2.17.0 to 2.17.2 by @dependabot in #2161
- build(deps): bump mkdocs-material from 9.1.4 to 9.1.5 by @dependabot in #2162
- build(deps): bump botocore from 1.29.100 to 1.29.105 by @dependabot in #2163
- build(deps-dev): bump moto from 4.1.5 to 4.1.6 by @dependabot in #2164
New Contributors
- @cerontrustly made their first contribution in #2154
- @visit1985 made their first contribution in #2156
Full Changelog: 3.3.2...3.3.3
Prowler 3.3.2 - Sun and Steel [HOTFIX]
Prowler 3.3.1 - Sun and Steel
Fixes
- fix(output bucket): solve IsADirectoryError using compliance flag by @sergargar in #2121
- fix(quickinventory): AttributError when creating inventory table by @bnugent in #2122
- fix(aws_provider): Fix assessment session name by @jfagoagas in #2132
- fix(brew): move brew formula action to the bottom by @sergargar in #2135
- fix(s3): handle if ignore_public_acls is None by @jfagoagas in #2128
- fix(defender service): retrieving key dicts with get by @n4ch04 in #2129
- fix(resource_not_found): Handle error by @jfagoagas in #2136
- fix(readme): add GCP provider to README introduction by @sergargar in #2143
- fix(azure output): change default values of audit identity metadata by @n4ch04 in #2144
- fix(delete check): delete check ec2.._in_use_without_ingrgess_filtering by @n4ch04 in #2148
- fix(audit_info): azure subscriptions parsing error by @n4ch04 in #2147
- fix(ssm): Handle ValidationException when retrieving documents by @jfagoagas in #2146
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2149
Chores
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2104
- chore(version): check latest version by @sergargar in #2106
Docs
- docs: Remove list severities by @jfagoagas in #2116
- docs(developer-guide): added phase 1 of dev guide by @toniblyx in #1904
- docs: improve quick inventory section by @sergargar in #2117
- docs: improve reporting documentation by @sergargar in #2119
- docs: Developer Guide - how to create a new check by @sergargar in #2137
Dependencies
- build(deps-dev): bump openapi-spec-validator from 0.5.5 to 0.5.6 by @dependabot in #2110
- build(deps-dev): bump coverage from 7.2.1 to 7.2.2 by @dependabot in #2112
- build(deps-dev): bump moto from 4.1.4 to 4.1.5 by @dependabot in #2111
- build(deps): bump mkdocs-material from 9.1.2 to 9.1.3 by @dependabot in #2113
- build(deps): bump boto3 from 1.26.86 to 1.26.90 by @dependabot in #2114
- build(deps): bump alive-progress from 3.0.1 to 3.1.0 by @dependabot in #2138
- build(deps): bump pydantic from 1.10.6 to 1.10.7 by @dependabot in #2139
- build(deps): bump mkdocs-material from 9.1.3 to 9.1.4 by @dependabot in #2140
- build(deps): bump botocore from 1.29.90 to 1.29.100 by @dependabot in #2142
New Contributors
Full Changelog: 3.3.0...3.3.1
Prowler 3.3.0 - Sun and Steel
Through earth and water, fire and wind
You came at last, nothing was the end...
As this series of Prowler versions, Sun and Steel is a song part of Piece of Mind album of Iron Maiden. In this side of the world (north hemisphere), spring is about to start and this song is about Sun (and Steel) so here you go! 🤘🏽See below the amazing new features we have added to Prowler 3.3.0 🔥Sun and Steel🔥
New features to highlight in this version:
🏷️ Resource Tags everywhere:
⚖️ Compliance everywhere:
- Now all findings in outputs like HTML, CSV and JSON contains any security framework related to the finding.
🛡️ Security Hub integration with compliance from Prowler:
- All findings sent to Security Hub include their compliance information and all frameworks that they belongs to. This allow user to filter by Compliance Associated Standards ID and others and take advantage of all new supported frameworks in Prowler:
📊 New inventory output include regions:
- When running Prowler Quick Inventory (
prowler -i
) the output is as nice as this one:
✅ 3 new checks:
- s3_bucket_level_public_access_block
- rds_instance_transport_encrypted - this is valid so far only for Postgresql and MS SQL Server
- cloudwatch_log_group_no_secrets_in_logs
What's Changed:
- feat(templates): New versions of issues and fr templates by @n4ch04 in #2072
- feat(tags): add resource tags by @sergargar in #2020
- feat(s3_bucket_level_public_access_block): new check by @sergargar in #1953
- feat(rds_instance_transport_encrypted): add new check by @sergargar in #1963
- feat(quick_inventory): add regions to inventory table by @sergargar in #2026
- feat(new_check): cloudwatch_log_group_no_secrets_in_logs by @Fennerr in #1980
- feat(lambda_cloudtrail check): improved logic and status extended by @n4ch04 in #2092
- feat(inventory): add tags to quick inventory by @sergargar in #2051
- feat(encryption): add new encryption category by @sergargar in #1999
- feat(dispatch): add tag info to dispatch by @n4ch04 in #2002
- feat(compliance): add compliance field to HTML, CSV and JSON outputs including frameworks and reqs by @sergargar in #2060
- feat(SecurityHub): add compliance details to Security Hub findings by @sergargar in #2100
Fixes:
- fix(windows-path): --list-services bad split by @garym-krrv in #2028
- fix(ulimit): handle low ulimit OSError by @sergargar in #2042
- fix(ulimit check): test only when platform is not windows by @n4ch04 in #2094
- fix(quick inventory): add non-tagged s3 buckets to inventory by @sergargar in #2041
- fix(providers): Move provider's logic outside main by @jfagoagas in #2043
- fix(iam): pydantic migration and reformat logic service by @n4ch04 in #2010
- fix(head): Pass head commit to dispatch action by @n4ch04 in #2022
- fix(emr): solve emr_cluster_publicly_accesible error by @sergargar in #2086
- fix(emr): KeyError EmrManagedSlaveSecurityGroup by @jfagoagas in #2000
- fix(ec2_securitygroup_allow_wide_open_public_ipv4): correct check title by @sergargar in #2101
- fix(ec2): avoid terminated instances by @sergargar in #2063
- fix(compliance): add check to 2.1.5 CIS by @sergargar in #2077
- fix(cloudwatch): solve inexistent filterPattern error by @sergargar in #2087
- fix(cloudtrail): list tags only in owned trails by @sergargar in #2025
- fix(check): change cloudformation_outputs_find_secrets name by @sergargar in #2027
- fix(bug_report): typo in bug reporting template by @jfagoagas in #2078
- fix(bug_report): Update wording by @jfagoagas in #2074
- fix(awslambdacloudtrail): include advanced event and all lambdas in check by @n4ch04 in #1994
- fix(actions): fixed dispatch commit message by @n4ch04 in #2023
- fix(actions): Typo push should be true by @jfagoagas in #2019
- fix(actions): Stop using github storage by @jfagoagas in #2016
Documentation and other updates
- chore(docs): update readme with new ECR alias by @toniblyx in #2079
- chore(docs): Corrected spelling mistake in multiacount by @alexnelsone in #2056
- chore(docs): Add brew and github installation to quick start by @toniblyx in #1991
- chore(release): update Prowler Version to 3.2.4 by @sergargar in #1988
- chore(regions_update): Changes in regions for AWS services. by @sergargar in #2095
- chore(poetry): add poetry checks to pre-commit by @sergargar in #2040
- chore(metadata): remove tags from metadata by @sergargar in #1998
- chore(iam): update prowler permissions by @sergargar in #2050
- chore(dependabot): Change to weekly by @jfagoagas in #2057
- chore(brew): bump new version to brew by @sergargar in #1990
- chore(actions): Use GHA cache by @jfagoagas in #2066
- chore(actions): Missing cache in the PR by @jfagoagas in #2067
- build(deps-dev): bump pytest-xdist from 3.2.0 to 3.2.1 by @dependabot in #2084
- build(deps-dev): bump pytest from 7.2.1 to 7.2.2 by @dependabot in #2046
- build(deps-dev): bump pylint from 2.16.4 to 2.17.0 by @dependabot in #2062
- build(deps-dev): bump moto from 4.1.3 to 4.1.4 by @dependabot in #2045
- build(deps-dev): bump freezegun from 1.2.1 to 1.2.2 by @dependabot in #2033
- build(deps-dev): bump flake8 from 5.0.4 to 6.0.0 by @dependabot in #2012
- build(deps-dev): bump docker from 6.0.0 to 6.0.1 by @dependabot in #2030
- build(deps-dev): bump coverage from 7.1.0 to 7.2.1 by @dependabot in #2032
- build(deps-dev): bump black from 22.10.0 to 22.12.0 by @dependabot in #2013
- build(deps-dev): bump bandit from 1.7.4 to 1.7.5 by @dependabot in #2082
- build(deps): bump pydantic from 1.10.5 to 1.10.6 by @dependabot in #2081
- build(deps): bump mkdocs-material from 9.1.1 to 9.1.2 by @dependabot in #2080
- build(deps): bump botocore from 1.29.86 to 1.29.90 by @dependabot in #2083
- build(deps): bump boto3 from 1.26.85 to 1.26.86 by @dependabot in #2061
New Contributors
- @garym-krrv made their first contribution in #2028
- @alexnelsone made their first contribution in #2056
Full Changelog: 3.2.4...3.3.0