Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Release v5.13.0 #1555

Merged
merged 118 commits into from
Jul 5, 2023
Merged

Release v5.13.0 #1555

merged 118 commits into from
Jul 5, 2023

Conversation

fernando-gallego
Copy link
Collaborator

ScoutSuite v5.13.0

Changes:

  • Core
    • Added support for Python versions >= 3.9; versions 3.8 and older are no longer recommended and support will not be provided for issues with these versions
    • Secret redaction logic improvements
    • Multiple error handling improvements
  • AWS
    • Multiple bugfixes for checks
    • Multiple minor corrections for finding templates
  • Azure
    • Multiple bugfixes for checks
    • Multiple minor corrections for finding templates
    • Updated azure-mgmt-authorization module to v3.0.0
    • Added new rules for several Azure CIS Benchmark checks
  • GCP
    • Multiple bugfixes for checks
    • Multiple minor corrections for finding templates

Thanks to all contributors in this release:

@FlorinAsavoaie
@yaleman
@tkmru
@elimisteve
@rbailey-godaddy
@rscottbailey
@x4v13r64
@twilson-bf
@x64-latacora
@zachfey
@wrightmalone
@fl0mb
@ncc-akis
@saez0pub
@HIKster
@cckev

FlorinAsavoaie and others added 30 commits September 2, 2022 11:11
@FlorinAsavoaie
Fix AWS when building for arm64
56de0be
@yaleman
fixing typo
732bd73
@fernando-gallego
Handle empty function 'maxInstances'
41e360e 
Handle error when function has no maxInstances attribute defined
@tkmru
docs.microsoft.com->learn.microsoft.com
4799df8
@michyweb
Merge pull request #1459 from tkmru/fix/docs-to-learn
b9c47f2 
docs.microsoft.com->learn.microsoft.com in Azure document
@michyweb
Merge pull request #1456 from yaleman/typo
dff1a4b 
Fixing typo in container-set-init.sh
@michyweb
Merge pull request #1452 from FlorinAsavoaie/fix/aws-arm64
888916f 
Fix AWS when building for arm64
@liyun-li
Kubescout Alpha
5507cc6
@michyweb
Merge pull request #1460 from liyun-li/develop
cf44beb 
Kubescout Alpha
@elimisteve
azure/rules/findings/rbac-administering-resource-locks-assigned.json:…
8887ad2 
… Typo fix

Assigne -> Assign
@rbailey-godaddy @rscottbailey
Exclude SMTP port 25 from rule
b324389 
We should exclude port 25 from `ec2-security-group-opens-port-to-all` because it already is covered by `ec2-security-group-opens-known-port-to-all` (as SMTP)
@liyun-li
Bug fix
981670f 
Remove the assumption that all Secrets have a `data` field.
@liyun-li
Secret redaction logic improvement
3d5a1aa 
Remove the assumption the `data` field in every Secret is a dictionary.
@liyun-li
Add checks on lists because why not
d6e0e28
@liyun-li
remove unnecessary typing
3e3fd65 
This typing seems to have caused some compatibility issues.
@michyweb
Merge pull request #1468 from liyun-li/develop
6563ac8 
Kubescout bug fix
@x4v13r64
Format findings
d3002c2
@x4v13r64
Format findings
d56bf14
@x4v13r64
Format findings
79667f1
@x4v13r64
Support LBs
7403e8b
@x4v13r64
Support additional parameters
860cdb2
@x4v13r64
Add default values
9315ae0
@x4v13r64
Add findings
a32df60
@x4v13r64
Format
1b6aa70
@x4v13r64
Format
75c8b68
@x4v13r64
Catch task exceptions
9e8bbc8
@x4v13r64
Catch ranges from 1-65535
ba8e184
@x4v13r64
Better logic
a748c41
@x4v13r64
Improve rule
5c29988
@x4v13r64
Add missing rule to ruleset
ec8fa81
liyun-li and others added 28 commits June 5, 2023 10:11
@liyun-li
Merge pull request #1522 from saez0pub/fix/gcp_audit
acf7bda 
Fix(gcp): update cloudsql api and edge case configurations
@michyweb
Update __init__.py
36d8bd9
@fernando-gallego
Update setup.py
40d699c 
Update supported Python versions.
@fernando-gallego
Update testing.yml
0798a3a 
Update Python versions.
@fernando-gallego
Update setup.py
3d3fa71 
Adding Python v3.9
@ncc-akis
Ensure correct SQL DB AD Admin check
7619c30
@ncc-akis
Quoted Python version numbers
44d9851
@ncc-akis
Use Azure ADE status to prevent false positives
7543cd7
@ncc-akis
Fix errors in "Key Vault Not Recoverable" rule
477a82b
@ncc-akis
New rule: Azure Key Vault RBAC Disabled
da6b28b
@ncc-akis
Stop hideAll selector affecting non-list elements
baedf24
@ncc-akis
Highlight non-compliant LB ports
98e514e
@ncc-akis
Special case no longer needed
0ef4154
@ncc-akis
Evaluate purge protection as bool
791f3cc
@ncc-akis
Fix errors in "Key Vault Not Recoverable" rule
cef3a70
@ncc-akis
New rule: Azure Key Vault Public Access
334fafa
@michyweb
Merge pull request #1548 from ncc-akis/bugfix/lb_exceptions
cb7299d 
Bugfix/lb exceptions
@fernando-gallego
Merge pull request #1545 from ncc-akis/bugfix/fix_sqldb_ad_admin_asse…
afecedf 
…ssment

Ensure correct SQL DB AD Admin check
@fernando-gallego
Merge pull request #1546 from ncc-akis/bugfix/workflow_python_version…
242458a 
…_fix

Quoted Python version numbers
@fernando-gallego
Merge pull request #1547 from ncc-akis/feature/evaluate_ade_status
7125290 
Use Azure ADE status to prevent false positives
@fernando-gallego
Merge pull request #1538 from nccgroup/issues-1529
219c9a5 
 GCP rule ssl_required not accurate
@fernando-gallego
Merge pull request #1549 from ncc-akis/bugfix/false_negative_keyvault…
00ab346 
…_purge_protection

Bugfix/false negative keyvault purge protection
@ncc-akis
Correct dashboard names and compliance references
e2f0274
@ncc-akis
Merge branch 'develop' into feature/az_keyvault_new_rules
d083f92
@fernando-gallego
Update vaults.py
592505e
@fernando-gallego
Merge pull request #1552 from ncc-akis/feature/az_keyvault_new_rules
3caf861 
New rules for Azure Key Vault
@fernando-gallego
Update __init__.py
643acd0
@fernando-gallego
Update __init__.py
0c90ab9 
Change to v5.13.0
@codecov
Copy link

codecov bot commented Jul 5, 2023
edited

Codecov Report

Patch coverage: 5.08% and project coverage change: -2.70 ⚠️

Comparison is base (bf172f6) 23.21% compared to head (0c90ab9) 20.52%.

Additional details and impacted files 
@@            Coverage Diff             @@
##           master    #1555      +/-   ##
==========================================
- Coverage   23.21%   20.52%   -2.70%     
==========================================
  Files         334      384      +50     
  Lines       11379    13038    +1659     
==========================================
+ Hits         2642     2676      +34     
- Misses       8737    10362    +1625
Impacted Files Coverage Δ
ScoutSuite/providers/__init__.py 100.00% <ø> (ø)
ScoutSuite/providers/aws/facade/cloudtrail.py 32.14% <ø> (ø)
...Suite/providers/aws/resources/cloudtrail/trails.py 21.56% <0.00%> (-0.89%) ⬇️
...utSuite/providers/aws/resources/cloudwatch/base.py 16.66% <0.00%> (ø)
...coutSuite/providers/aws/resources/ec2/instances.py 15.15% <0.00%> (ø)
...e/providers/aws/resources/iam/credentialreports.py 20.37% <0.00%> (-0.79%) ⬇️
ScoutSuite/providers/aws/resources/iam/roles.py 16.66% <0.00%> (ø)
ScoutSuite/providers/aws/resources/kms/keys.py 24.39% <0.00%> (-1.26%) ⬇️
ScoutSuite/providers/azure/facade/aad.py 0.00% <0.00%> (ø)
ScoutSuite/providers/azure/facade/appservice.py 0.00% <0.00%> (ø)
... and 114 more

... and 25 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

@fernando-gallego fernando-gallego merged commit 91d90e3 into master Jul 5, 2023
8 of 10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet