Open Issues Need Help
View All on GitHubAI Summary: This GitHub issue proposes adding a new check to the Prowler security tool for GitHub organizations. The check would verify if an organization has a "Verified" badge on its profile, ensuring domain authenticity to comply with CIS Control 1.3.9 and protect against phishing. The task involves leveraging the GitHub API and integrating the check following existing `provider/github` implementations.
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
AI Summary: This issue requests the addition of a new GitHub check to ensure that all organization repositories enforce strict base permissions, specifically set to 'Read' or 'None'. The motivation is to comply with CIS Control 1.3.8, minimize risk, and prevent unintentional or malicious actions by restricting excessive access.
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
AI Summary: This GitHub issue requests a new Prowler check for the GitHub provider to enforce CIS Control 1.2.2. The check will verify that repository creation within a GitHub organization is limited to specific, trusted members or teams, aiming to improve organizational structure, reduce security risks, and enhance oversight by preventing unauthorized repository creation.
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
AI Summary: This issue proposes adding a GitHub check to automatically dismiss previous pull request approvals when new commits are pushed to a branch. The goal is to comply with CIS Control 1.1.4, ensuring all code updates receive a fresh review and preventing unauthorized changes after initial approval.
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
AI Summary: This issue proposes a new GitHub check to enforce that only a limited number of trusted users, specifically organization owners or designated administrators, possess the ability to delete repositories. The primary motivation is to comply with CIS Control 1.2.3 and mitigate the risk of accidental or malicious data loss by restricting this critical privilege.
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more
Prowler is the Open Cloud Security platform for AWS, Azure, GCP, Kubernetes, M365 and more. It helps for continuous monitoring, security assessments & audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, ENS and more