Release 5.14.0 #1635
Merged
Release 5.14.0 #1635
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Remove *.uk domains as they now support domain locks.
It seems to work but there are issues with the display; see "TKTK" comments in .../services.ec2.regions.id.regional_settings.html. Still needs tests.
ScoutSuite previously did not flag key vaults for which the API returned enable_soft_delete = null. Such key vaults have neither soft-delete nor purge protecton enabled and are also not recoverable. The check would only flag key vaults for which enable_soft_delete = false.
ScoutSuite failed to flag key vaults where the enable_rbac_authorization field was set to null. Through manual configuration in the Azure portal I confirmed that RBAC Access Control is disabled if this field is set to null.
The test scans Blob Containers, not Storage Accounts. There is a 1:n relationship between Storage Accounts and Blob Containers.
- Updates azure-mgmt-storage to 17.0.0 - Only consider storage accounts that allow access key access for the check - Display the access key status in the results
…ot-recoverable Fixes 'Key Vault Not Recoverable' check
Apparently ScoutSuite makes the implicit assumption that all settings are associated with resources, rather than directly to the region + service. So we move the regional EBS settings into a fake resource. This means that paths now need to include an ID for the "resource".
Feature/1584 aws ebs encryption
…port Feature/DigitalOcean support
Review/Fixes for DigitalOcean to overwrite PR #1604
Update some GCP dependencies as in #1589 and pin protobuf 3.20.1 since more recent versions break GCP libs
…-update Bugfix/route53 domain lock update
…bac-disabled Fixes 'Key Vault Role Based Access Control Disabled' check
…ontainer-labeling Corrected display name for 'Blob Containers Allowing Public Access'
…-accounts-without-access-keys Improves 'Access Keys Not Rotated' check
…used-credentials Bugfix/1621 Improve AWS unused credential issue flagging
…y-rotation-rule-name Improves iam-user-no-key-rotation rule
…tail-view-highlighting Adds highlighting for "EBS Volume Not Encrypted" detail view
Docker refactor
Case insensitive conditionals
Update to v5.14.0
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
ScoutSuite v5.14.0
Changes:
Thanks to all contributors in this release:
@x4v13r64
@ltoroncc
@asifwani
@rossja
@launchdaemon
@rdegraaf-ncc3
@rieck-srlabs