-
Notifications
You must be signed in to change notification settings - Fork 1.5k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(metadata): Include account metadata in Prowler assessments #1049
feat(metadata): Include account metadata in Prowler assessments #1049
Conversation
Use assume_role backing up normal assumed credentials to assume management account and then restore it to old ones
860c47d
to
a0d4a8a
Compare
Are we forcing to use the same role name for the Management account (to recover Organizations metadata) and the account to be audited? |
yes, that is on purpose to simplify. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
LGTM, it is a great feature!
b10354a
to
477ba3a
Compare
Reformulate to extract AWS Organizations metadata
477ba3a
to
414553f
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Reviewed!
Context
This code provide additional account information to each csv and json output if Prowler can get information from the AWS organizations management account.
Description
Please include a summary of the change and which issue is fixed. List any dependencies that are required for this change.
License
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.