Prowler 4.5.2 - Another Life
Important Changes
-
fix(aws): remove
cloudwatch_log_group_no_critical_pii_in_logs
check by @MrCloudSec in #5735- This check has been removed due to dependencies on
presidio-analyzer
, which loads NLP modules and PII recognizers from external sources not included in Prowler’s dependencies. This approach is unsuitable for offline environments. Additionally:- Dependencies are unavailable on PyPI, complicating installation.
- The NLP module (
en-core-web-lg
) is large (~400MB), and we need to assess whether this module is necessary. - The installation process adds excessive output to the terminal UI, impacting readability.
We plan to reintroduce this check with dependencies fully defined and verified.
- This check has been removed due to dependencies on
Fixes
- fix(ec2): Unique finding per Security Group in high-risk ports check by @prowler-bot in #5698
Chores
- chore(version): Updated Prowler version by @MrCloudSec in #5680
Full Changelog: 4.5.1...4.5.2